Description
It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 (previously known as avro-rs). Users should update to apache-avro version 0.14.0 which addresses this issue.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-6639 | It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 (previously known as avro-rs). Users should update to apache-avro version 0.14.0 which addresses this issue. |
Github GHSA |
GHSA-wcm8-86x6-8mv3 | Apache Avro Rust SDK's Reader could consume memory beyond allowed constraints |
References
History
Tue, 23 Jun 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: apache
Published:
Updated: 2026-06-23T14:37:21.548Z
Reserved: 2022-07-16T00:00:00.000Z
Link: CVE-2022-36124
Updated: 2024-08-03T10:00:01.548Z
Status : Modified
Published: 2022-08-09T07:15:07.443
Modified: 2026-06-17T04:52:58.200
Link: CVE-2022-36124
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-770
Allocation of Resources Without Limits or Throttling
EUVD
Github GHSA