The git-url-parse crate up to and including 0.4.4 for Rust allows Regular Expression Denial of Service (ReDos) via a crafted URL to normalize_url in lib.rs, a similar issue to CVE-2023-32758 (Python).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
git-url-parse project git-url-parse |