3 matches found
CVE-2021-29932
An issue was discovered in the parseduration crate through 2021-03-18 for Rust. It allows attackers to cause a denial of service CPU and memory consumption via a duration string with a large exponent...
GSD-2021-1000007 denial of service in parse_duration version up to 2.1.0
REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29932. Reason: This candidate is a duplicate of CVE-2021-29932. Notes: All CVE users should reference CVE-2021-29932 instead of this candidate...
CVE-2021-29932
The CVE-2021-29932 issue concerns the Rust crate parse_duration (up to 2021-03-18). The vulnerability lies in the duration-string parser, where an input with a large exponent can trigger excessive CPU and memory usage, leading to a denial of service. Affected component: parse_duration crate in Ru...