vulnerability

Amazon Linux 2023: CVE-2025-53605: Medium priority package update for rust

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:N/I:N/A:C)	Jul 5, 2025	Jul 30, 2025	Jul 30, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:C)

Published

Jul 5, 2025

Added

Jul 30, 2025

Modified

Jul 30, 2025

Description

The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::coded_input_stream::CodedInputStream::skip_group parsing of unknown fields in untrusted input.

Solutions

amazon-linux-2023-upgrade-cargoamazon-linux-2023-upgrade-cargo-debuginfoamazon-linux-2023-upgrade-clippyamazon-linux-2023-upgrade-clippy-debuginfoamazon-linux-2023-upgrade-rustamazon-linux-2023-upgrade-rust-analyzeramazon-linux-2023-upgrade-rust-analyzer-debuginfoamazon-linux-2023-upgrade-rust-debugger-commonamazon-linux-2023-upgrade-rust-debuginfoamazon-linux-2023-upgrade-rust-debugsourceamazon-linux-2023-upgrade-rust-docamazon-linux-2023-upgrade-rustfmtamazon-linux-2023-upgrade-rustfmt-debuginfoamazon-linux-2023-upgrade-rust-gdbamazon-linux-2023-upgrade-rust-lldbamazon-linux-2023-upgrade-rust-srcamazon-linux-2023-upgrade-rust-std-staticamazon-linux-2023-upgrade-rust-std-static-wasm32-unknown-unknownamazon-linux-2023-upgrade-rust-std-static-wasm32-wasip1amazon-linux-2023-upgrade-rust-toolsetamazon-linux-2023-upgrade-rust-toolset-srpm-macros

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today