The git-url-parse crate through 0.4.4 for Rust allows Regular Expression Denial of Service (ReDos) via a crafted URL to normalize_url in lib.rs, a similar issue to CVE-2023-32758 (Python).
Products Affected
| Vendor | Product | Version |
|---|---|---|
| git-url-parse_project | git-url-parse | * |