22:36
2026-06-30
endorlabs.com
ai-safety
22x memory amp DoS in Anthropic's buffa protobuf decoder (CVE-2026-55407)
Anthropic's Rust protobuf library buffa contains a denial-of-service vulnerability (CVE-2026-55407) that allows attackers to trigger excessive memory allocation, up to 22x the input size, via an unkno…