Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-8327-84cj-8xjm: Stack overflow when parsing specially crafted JSON ABI strings

Affected versions of the alloy-json-abi crate did not properly handle parsing of malformatted JSON ABI strings. The JsonAbi::parse method can be tricked into a stack overflow when processing specially crafted input.

This stack overflow can lead to a crash of the application using this crate, potentially causing a denial of service.

The flaw was corrected in commit 4790c47.

ghsa
#dos#js#git#perl
  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. GHSA-8327-84cj-8xjm

Stack overflow when parsing specially crafted JSON ABI strings

Moderate severity GitHub Reviewed Published Aug 15, 2024 to the GitHub Advisory Database • Updated Aug 15, 2024

Package

cargo alloy-json-abi (Rust)

Affected versions

<= 0.7.7

Published to the GitHub Advisory Database

Aug 15, 2024

Last updated

Aug 15, 2024

ghsa: Latest News

GHSA-pj33-75x5-32j4: RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission