2 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-3433
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The aeson library is not safe to use to consume untrusted JSON input. A remote user could abuse this flaw to produce a hash collision in the underlying...
CVE-2022-3433
The CVE-2022-3433 entry concerns the aeson library, which is not safe to use with untrusted JSON input. Multiple connected sources describe a hash-flooding (hash DoS) vulnerability triggered by crafted JSON data that exploits the underlying unordered-containers HashMap, enabling remote denial of ...