GHSA-prpj-rchp-9j5h: OpenBao allows cancellation of root rekey and recovery rekey operations without authentication

GHSA-8f5r-8cmq-7fmq: OpenBao Inserts Sensitive Information into Log File when processing malformed data

GHSA-6f6r-m9pv-67jw: iOS Simulator MCP Command Injection allowed via exec API

GHSA-p7fw-vjjm-2rwp: Incus creates nftables rules that partially bypass security options

GHSA-9q7c-qmhm-jv86: Incus Allocation of Resources Without Limits allows firewall rule bypass on managed bridge networks

Recursive decent parsers are susceptible too StackOverflowExceptions on too deeply nested structures as currently "open" parsing state is kept on the stack.

**Uncontrolled Resource Consumption in Spray JSON**

Moderate severity GitHub Reviewed Published Jun 28, 2022 • Updated Jun 28, 2022

Headline

GHSA-ww3v-6xjf-jv28: Uncontrolled Resource Consumption in Spray JSON

ghsa: Latest News