Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Avro Java SDK when generating specific records f

Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute arbitrary code. Users are

When deserializing untrusted or corrupted data, it is possible for a reader to consume memory beyond the allowed constraints and t

Hamba avro is a go lang encoder/decoder implementation of the avro codec specification. In affected versions a well-crafted string

It is possible to crash (panic) an application by providing a corrupted data to be read. This issue affects Rust applications usin

It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system. This is

It is possible to provide data to be read that leads the reader to loop in cycles endlessly, consuming CPU. This issue affects Rus

A vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of