Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
rPGP Potential Resource Exhaustion when handling Untrusted Messages
Vulnerability Description
rPGP is a pure Rust implementation of OpenPGP. Prior to 0.14.1, rPGP allows attackers to trigger resource exhaustion vulnerabilities in rpgp by providing crafted messages. This affects general message parsing and decryption with symmetric keys.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
rPGP 安全漏洞
Vulnerability Description
rPGP是rPGP开源的一个 OpenPGP 的纯 Rust 实现。 rPGP 0.14.1之前版本存在安全漏洞。攻击者利用该漏洞可以通过提供特制消息导致资源耗尽。
CVSS Information
N/A
Vulnerability Type
N/A