MessagePack
Extremely Fast MessagePack(MsgPack) Serializer for C# (.NET Framework, .NET 6, Unity, Xamarin).
Security Advisories for MessagePack in nuget
Moderate
about 18 hours ago
MessagePack-CSharp: Typeless deserialization type restrictions do not recurse into arrays or generic arguments
nuget
MessagePack
Moderate
about 18 hours ago
MessagePack-CSharp: InterfaceLookupFormatter bypasses collision-resistant comparer settings
nuget
MessagePack
Moderate
about 18 hours ago
MessagePack-CSharp: Multi-dimensional array formatters allocate from unchecked dimensions
nuget
MessagePack
Moderate
about 18 hours ago
MessagePack-CSharp: Unity unsafe blit formatter allocates from unbounded byte length
nuget
MessagePack
Moderate
about 18 hours ago
MessagePack-CSharp: DynamicUnionResolver-generated deserializers miss depth enforcement
nuget
MessagePack
Moderate
about 19 hours ago
MessagePack-CSharp: JSON conversion APIs can recurse without consistent depth enforcement
nuget
MessagePack
Moderate
about 20 hours ago
MessagePack-CSharp: ExpandoObject formatter can perform quadratic insertion work on untrusted maps
nuget
MessagePack
Moderate
about 20 hours ago
MessagePack-CSharp: LZ4 decompression allocates from unbounded declared output lengths
nuget
MessagePack
Moderate
about 20 hours ago
MessagePack-CSharp: ASP.NET Core MessagePackInputFormatter defaults to TrustedData for HTTP request bodies
nuget
MessagePack
High
about 20 hours ago
MessagePack-CSharp: MessagePackReader.Skip can recurse without enforcing maximum object graph depth
nuget
MessagePack
High
about 21 hours ago
MessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflows
nuget
MessagePack
High
15 days ago
MessagePack's LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input
nuget
MessagePack
Moderate
over 1 year ago
MessagePack allows untrusted data to lead to DoS attack due to hash collisions and stack overflow
nuget
MessagePack