rpm package

opensuse/pijul&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/pijul&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2023-26964	—	< 1.0.0~beta.5-1.1	1.0.0~beta.5-1.1	Apr 11, 2023	An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2 component processes HTTP2 RST_STREAM frames. As a result, the memory and CPU usage are high which can lead to a Denial of Service (DoS).
CVE-2022-31394	—	< 1.0.0~beta.4-1.1	1.0.0~beta.4-1.1	Feb 21, 2023	Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software, allowing attackers to perform HTTP2 attacks.
CVE-2022-24713	—	< 1.0.0~beta.2-1.1	1.0.0~beta.2-1.1	Mar 8, 2022	regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane

CVE-2023-26964Apr 11, 2023
affected < 1.0.0~beta.5-1.1fixed 1.0.0~beta.5-1.1
An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2 component processes HTTP2 RST_STREAM frames. As a result, the memory and CPU usage are high which can lead to a Denial of Service (DoS).
CVE-2022-31394Feb 21, 2023
affected < 1.0.0~beta.4-1.1fixed 1.0.0~beta.4-1.1
Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software, allowing attackers to perform HTTP2 attacks.
CVE-2022-24713Mar 8, 2022
affected < 1.0.0~beta.2-1.1fixed 1.0.0~beta.2-1.1
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane