CNNVD-202512-1363 Information
CNNVD ID
CNNVD-202512-1363
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Matrix Rust SDK是The Matrix.org Foundation开源的一个基于Rust的Matrix客户端服务器开发工具包。 Matrix Rust SDK 0.14.1及之前版本存在安全漏洞,该漏洞源于序列化错误,可能导致拒绝服务。
Description (English)
Matrix Rust SDK is a Rust-based Matrix server development toolkit for The Matrix.org Foundation Open Source. There is a security loophole in the Matrix Rust SDK 0.14.1 and earlier versions, which stems from a serialization error that may lead to the denial of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
The Matrix.org Foundation
Published
2025-12-09
Last Modified
2026-02-24
References
https://github.com/matrix-org/matrix-rust-sdk/commit/4ea0418abefab2aa93f8851a4d39c723e703e6b0 https://github.com/matrix-org/matrix-rust-sdk/pull/5924 https://github.com/matrix-org/matrix-rust-sdk/security/advisories/GHSA-jj6p-3m75-g2p3 https://rustsec.org/advisories/RUSTSEC-2025-0135.html
Patch
https://github.com/matrix-org/matrix-rust-sdk/releases
Share on: