OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-01 01:00:23 +01:00
Code Issues Packages Projects Releases Wiki Activity

parse_duration: parse DoS through payloads with big exponent (#827)

Browse Source
This commit is contained in:
Disconnect3d
2021-03-25 05:43:09 +01:00
committed by GitHub
parent cda5b3ffd4
commit 3864def6bf
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
crates/parse_duration/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,23 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
aliases = ["CAN-2021-1000007"]
package = "parse_duration"
date = "2021-03-18"
url = "https://github.com/zeta12ti/parse_duration/issues/21"
categories = ["denial-of-service"]
keywords = ["parsing", "untrusted data"]
[versions]
patched = []
unaffected = []
[affected.functions]
"parse_duration::parse" = ["*"]
```
# Denial of service through parsing payloads with too big exponent
The `parse_duration::parse` function allows for parsing duration strings with exponents like `5e5s` where under the hood, the [`BigInt` type along with the `pow` function are used for such payloads](https://github.com/zeta12ti/parse_duration/blob/26940ab5cd4e3a9d6bd97aa101f8d4bbfd18ee8c/src/parse.rs#L335). Passing an arbitrarily big exponent makes the `parse_duration::parse` function to process the payload for a very long time taking up CPU and memory.
This allows an attacker to cause a DoS if the `parse_duration::parse` function is used to process untrusted input.