The Rust ecosystem’s widely used protobuf crate contains a denial‑of‑service flaw: CVE‑2025‑53605 affects versions before 3.7.2 and permits uncontrolled recursion in protobuf::coded_input_stream::CodedInputStream::skip_group when processing unknown fields from untrusted input. The maintainers...
