4 matches found
CVE-2020-35896
An issue was discovered in the ws crate through 2020-09-25 for Rust. The outgoing buffer is not properly limited, leading to a remote memory-consumption attack...
accumulator (=0.3.0), bing-rs (>=0.0.2 <=0.0.4) +48 more potentially affected by CVE-2020-35896 via ws (>=0.4.8 <=0.8.1)
ws CARGO version =0.4.8, =0.0.2, =0.4.0, =0.1.0, =0.1.0, =0.1.0, =0.0.5, =0.1.0, =0.1.0, =11.0.0, =0.5.0, =0.2.6, =0.2.9 and more Source cves: CVE-2020-35896 Source advisory: OSV:GHSA-RH7X-PPXX-P34C...
CVE-2020-35896
The CVE-2020-35896 issue affects the ws crate (Rust) where the outgoing buffer is not properly limited, allowing a remote memory‑consumption attack. Affected versions did not cap growth of the outgoing buffer, enabling a remote attacker to exhaust memory and kill the process on a single connectio...
accumulator (=0.3.0), ahq_store_rs_core (>=0.1.0 <=0.10.0-alpha.1.1) +123 more potentially affected by CVE-2020-35896 via ws (>=0.4.8 <=0.9.2)
ws CARGO version =0.4.8, =0.1.0, =0.1.0, =0.0.2, =0.1.0, =0.0.1, =0.4.0, =0.1.0, =0.1.0, =0.9.0, =0.1.5, =0.1.0, =0.1.0, =0.2.0 and more Source cves: CVE-2020-35896 Source advisory: OSV:RUSTSEC-2020-0043...