GHSA-x96g-95fq-4xv4

Suggest an improvement
Source
https://github.com/advisories/GHSA-x96g-95fq-4xv4
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-x96g-95fq-4xv4/GHSA-x96g-95fq-4xv4.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-x96g-95fq-4xv4
Aliases
Published
2023-07-18T15:30:36Z
Modified
2023-12-20T23:41:34.819507Z
Summary
libostree vulnerable to denial of service attack
Details

An issue was discovered in ostree before version 0.17.1 allows attackers to cause a denial of service via the printpanic function in repocheckout_filter.rs.

Database specific 
{
    "nvd_published_at": "2023-07-18T14:15:12Z",
    "cwe_ids": [],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2023-12-20T23:16:17Z"
}
References

Affected packages

crates.io / ostree

Package

Name
ostree
View open source insights on deps.dev
Purl
pkg:cargo/ostree

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.17.1