10 matches found
EUVD-2023-3262
Malicious code in bioql PyPI...
CVE-2023-6180
The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after completin...
tokio-boring vulnerable to resource exhaustion via memory leak
Impact The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after...
specters (>=2.0.0 <=3.0.0) potentially affected by CVE-2023-6180 via tokio-boring (=4.19.0)
tokio-boring CARGO version =4.19.0 is affected by a known vulnerability. The following packages have a transitive dependency on tokio-boring and may be impacted: - specters =2.0.0, =3.0.0 Source cves: CVE-2023-6180 Source advisory: OSV:GHSA-PJRJ-H4FG-6GM4...
GHSA-PJRJ-H4FG-6GM4 tokio-boring vulnerable to resource exhaustion via memory leak
Impact The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after...
CVE-2023-6180
The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after completin...
Memory corruption
The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after completin...
CVE-2023-6180
The CVE-2023-6180 issue affects the tokio-boring library v4.0.0, where set_ex_data does not deallocate memory after completing a TLS connection, causing a memory leak and potential DoS via resource exhaustion as connections accumulate. The practical impact is increased resource usage per TLS hand...
CVE-2023-6180 Resource exhaustion via memory leak in tokio-boring
The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after completin...
CVE-2023-6180 Resource exhaustion via memory leak in tokio-boring
The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The setexdata function used by the library did not deallocate memory used by pre-existing data in memory each time after completin...