CWE-135 · Incorrect Calculation of Multi-Byte String Length
2 CVEs classified under CWE-135 (Incorrect Calculation of Multi-Byte String Length). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-0810 | High | 7.1 | 2026-01-26 | A flaw was found in gix-date. The `gix_date::parse::TimeBuf::as_str` function can generate strings containing invalid non-UTF8 characters. This issue violates… |
CVE-2026-34831 | Medium | 4.8 | 2026-04-02 | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Files#fail sets the Content-Length response header using String… |