First published: Fri Feb 09 2024(Updated: )
When parsing untrusted, deeply nested JSON, the stack may overflow, possibly enabling a Denial of Service attack. This was fixed by adding a check for recursion depth.
Affected Software | Affected Version | How to fix |
---|---|---|
rust/serde-json-wasm | <0.5.2 | 0.5.2 |
rust/serde-json-wasm | =1.0.0 | 1.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.