Security

Report a vulnerability

SECURITY.md

Security Policy

Supported Versions

As of June 18, 2014, version 4.5.x is currently being supported with security updates.

Earlier versions are no longer supported. Users should upgrade to the latest version of this library.

Reporting a Vulnerability

Report security vulnerabilities (those that can lead to security attacks) to the developer at: [email protected]

Denial of service in CBOR library
GHSA-6r92-cgxc-r5fg published Jan 17, 2022 by peteroupc

High
Denial of service due to reference expansion in versions earlier than 4.0
GHSA-cxw4-9qv9-vx5h published Sep 28, 2019 by peteroupc

High

Learn more about advisories related to peteroupc/CBOR in the GitHub Advisory Database