RubyGems - sqlite-vec - Versions - 0.0.1.alpha.14-arm64-darwin - Mend

sqlite-vec 0.0.1.alpha.14-arm64-darwin

1 security vulnerability found in version 0.0.1.alpha.14-arm64-darwin

Heap-based Buffer Overflow in sqlite-vec

high severity CVE-2024-46488

Patched versions: >= 0.1.3

sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.

Workaround for CVE in release 0.1.3.

No officially reported memory leakage issues detected.

This gem version does not have any officially reported memory leaked issues.

No license issues detected.

This gem version has a license in the gemspec.

This gem version is available.

This gem version has not been yanked and is still available for usage.