VDB
GHSA-rxf6-323f-44fc
GHSA-rxf6-323f-44fc
REJECTED
Duplicate Advisory: rust-protobuf crate is vulnerable to Uncontrolled Recursion, potentially leading to DoS
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| crates.io | protobuf | 0 |
Timeline
- Jul 5, 2025 CVE Published
- Aug 1, 2025 CVE Updated
- Mar 2, 2026 Security Advisory
References
- https://nvd.nist.gov/vuln/detail/CVE-2025-53605 advisory
- https://github.com/stepancheg/rust-protobuf/issues/749 url
- https://github.com/stepancheg/rust-protobuf/commit/ee1d928785cff80cbdbedde29fbf5210654410f0 url
- https://crates.io/crates/protobuf url
- https://github.com/stepancheg/rust-protobuf package
- https://rustsec.org/advisories/RUSTSEC-2024-0437 url