Headline
GHSA-8327-84cj-8xjm: Stack overflow when parsing specially crafted JSON ABI strings
Affected versions of the alloy-json-abi
crate did not properly handle parsing of malformatted JSON ABI strings. The JsonAbi::parse
method can be tricked into a stack overflow when processing specially crafted input.
This stack overflow can lead to a crash of the application using this crate, potentially causing a denial of service.
The flaw was corrected in commit 4790c47.
- GitHub Advisory Database
- GitHub Reviewed
- GHSA-8327-84cj-8xjm
Stack overflow when parsing specially crafted JSON ABI strings
Moderate severity GitHub Reviewed Published Aug 15, 2024 to the GitHub Advisory Database • Updated Aug 15, 2024
Package
cargo alloy-json-abi (Rust)
Affected versions
<= 0.7.7
Published to the GitHub Advisory Database
Aug 15, 2024
Last updated
Aug 15, 2024