A reported flaw in Anthropic's buffa library shows how attacker-controlled parsing can turn compatibility features into availability risk, even in memory-safe code.
A reported zero-day in a Rust-based protobuf library shows how attacker-controlled parsing logic can turn a small message into a denial-of-service event.
A leak-site listing tied to Akira raises the possibility of stolen business and personal records, but the compromise itself remains unverified.