Fixed in beta

CVE-2022-28229: Hashing was vulnerable to HashDOS

Problem type: Uncontrolled Resource Consumption

Description: The hash functionality in userver before d933af2eaf944b16cc9636a0c2893fed54434523 allows attackers to cause a denial of service via crafted HTTP request, involving collisions.

Credits: Ivan Trofimov

Hashing was vulnerable to HashDOS

Problem type: Uncontrolled Resource Consumption

Description: The hash functionality in userver before 42059b6319661583b3080cab9b595d4f8ac48128 allows attackers to cause a denial of service via crafted HTTP request, involving collisions.

Credits: Ivan Trofimov