It is possible to crash (panic) an application by providing a corrupted data to be read. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 (previously known as avro-rs). Users should update to apache-avro version 0.14.0 which addresses this issue.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| apache-avro(crates.io) | 0 | 0.14.0 | N/A |
CVSS Metrics
