You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The Swift team disclose a security issue in Swift >=5.1 < 5.1.5 about the JSON serialization.
A Kitura app build with such version is vulnerable to a DDOS.
The Swift version 5.1.5 fixes it: https://forums.swift.org/t/swift-5-1-5-for-linux/34478
This is not a Kitura specific problem, but worth a mention I think, maybe in the README?
Environment Details
Swift 5.1x. < 5.1.5, Linux only
Steps to Reproduce
create an endpoint that accept a payload
send a payload with a lot of '['
compile on Linux with Swift 5.1 < 5.1.5
observe the crash
The text was updated successfully, but these errors were encountered:
Context and Description
The Swift team disclose a security issue in Swift >=5.1 < 5.1.5 about the JSON serialization.
A Kitura app build with such version is vulnerable to a DDOS.
The Swift version 5.1.5 fixes it: https://forums.swift.org/t/swift-5-1-5-for-linux/34478
This is not a Kitura specific problem, but worth a mention I think, maybe in the README?
Environment Details
Swift 5.1x. < 5.1.5, Linux only
Steps to Reproduce
The text was updated successfully, but these errors were encountered: