An issue was discovered in the http crate before 0.1.20 for Rust. The HeaderMap::Drain API can use a raw pointer, defeating soundness.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-12-31
An issue was discovered in the http crate before 0.1.20 for Rust. An integer overflow in HeaderMap::reserve() could result in denial of service (e.g., an infinite loop).
CVSS Score
7.5
EPSS Score
0.016
Published
2020-09-14