VYPR

crates.io package

tokio-boring

pkg:cargo/tokio-boring

Vulnerabilities (1)

  • CVE-2023-6180Dec 5, 2023
    affected >= 4.0.0, < 4.1.0fixed 4.1.0

    The tokio-boring library in version 4.0.0 is affected by a memory leak issue that can lead to excessive resource consumption and potential DoS by resource exhaustion. The set_ex_data function used by the library did not deallocate memory used by pre-existing data in memory each t