BiliupApi (>=0.1.0 <=0.1.7), BrewStillery (>=6.0.1 <=6.0.2) +6279 more potentially affected by CVE-2024-12224 via idna (>=0.1.5 <=0.5.0)

idna CARGO version =0.1.5, =0.1.0, =6.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.3, =0.3.2, =1.0.3, =0.1.0, =0.1.0, =0.1.1, =0.1.8 and more Source cves: CVE-2024-12224 Source advisory: OSV:RUSTSEC-2024-0421...

PT-2024-17492

Name of the Vulnerable Software and Affected Versions idna versions 0.5.0 and earlier url versions prior to 2.5.4 Description The issue is related to improper validation of unsafe equivalence in punycode by the idna crate from Servo rust-url. This allows an attacker to create a punycode hostname...