3 matches found
acari-lib (>=0.1.1 <=0.1.8), acick (>=0.0.6 <=0.2.0-alpha.0) +1255 more potentially affected by CVE-2017-18587 via hyper (>=0.10.13 <=0.10.16)
hyper CARGO version =0.10.13, =0.1.1, =0.0.6, =0.0.7-alpha.3, =0.0.7-alpha.1, =0.1.0, =0.4.1, =0.1.0, =0.2.0, =0.0.1, =0.3.2, =0.1.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2017-18587 Source advisory: OSV:GHSA-Q89X-F52W-6HJ2...
CVE-2017-18587
CVE-2017-18587 (hyper crate, Rust) affects the hyper crate before 0.9.18, where header values mishandled newline characters in serialization. This can allow header fragmentation/splitting of requests or responses due to newline handling in header values. The issue is documented across multiple so...
acari-lib (>=0.1.1 <=0.1.8), acick (>=0.0.6 <=0.2.0-alpha.0) +1255 more potentially affected by CVE-2017-18587 via hyper (>=0.10.13 <=0.10.16)
hyper CARGO version =0.10.13, =0.1.1, =0.0.6, =0.0.7-alpha.3, =0.0.7-alpha.1, =0.1.0, =0.4.1, =0.1.0, =0.2.0, =0.0.1, =0.3.2, =0.1.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2017-18587 Source advisory: OSV:RUSTSEC-2017-0002...