VYPR

NuGet package

npgsql

pkg:nuget/npgsql

Vulnerabilities (1)

  • CVE-2024-32655HigMay 14, 2024
    affected >= 8.0.0, < 8.0.3fixed 8.0.3

    Npgsql is the .NET data provider for PostgreSQL. The `WriteBind()` method in `src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs` uses `int` variables to store the message length and the sum of parameter lengths. Both variables overflow when the sum of parameter lengths beco