Описание
The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| jammy | needs-triage | |
| noble | needs-triage | |
| plucky | not-affected | 1.22.0-1 |
| questing | not-affected | |
| upstream | released | 1.21.0-1 |
Показывать по
EPSS
2.9 Low
CVSS3
Связанные уязвимости
The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type.
The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type.
The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infi ...
Low severity (DoS) vulnerability in sequoia-openpgp
EPSS
2.9 Low
CVSS3