Inlay

//

Post

🚨 Please update "decimal" 🚨 A *single* calculation like: Decimal.new("1e1_000_000_000") |> Decimal.add(1) will OOM your application. Poof. Adios. Auf Wiedersehen. cna.erlef.org/cves/CVE-202...

1mo

This project handles the CVE Numbering Authority (CNA) for the Erlang Ecosystem Foundation (EEF).

cna.erlef.org

Unbounded exponent in decimal enables unauthenticated DoS

Peter Ullrich