Sereal-Decoder 4.010 Changelog - Vulnerability Key Information Summary Vulnerability Overview --- Impact Scope 3.006: Potential crashes when processing untrusted/corrupted Sereal data 3.005: Applications relying on precise numeric/string distinction (especially code using bitwise operators such as ) 3.002: When using interface to decode complex data structures Earlier versions: Compatibility issues on big-endian architectures (SPARC, HP-UX, etc.) --- Remediation Solutions --- Important Warning > Seamless Upgrade Warning: Before upgrading to version 4 decoder, you must first upgrade the encoder to version 4. --- Complete Change History https://github.com/Sereal/Sereal