Lucene search
China National Vulnerability DatabaseCNVD-2022-04007HistoryDec 28, 2021 - 12:00 a.m.
Rust rusqlite crate memory corruption vulnerability (CNVD-2022-04007)
2021-12-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
rust
rusqlite crate
sqlite
memory corruption
vulnerability
resource management error
security vulnerability
cnvd-2022-04007
EPSS
0.001
Percentile
42.3%
Rust rusqlite crate is an ergonomic wrapper for using SQLite from Rust. it attempts to expose a rust-postgres-like interface. versions 0.25.x prior to 0.25.4 and 0.26.x prior to 0.26.2 of Rust rusqlite crate are vulnerable to security vulnerability, which stems from a resource management error in create_scalar_function. No details of the vulnerability are currently available.
Related
github
github
Use After Free in rusqlite
2022-01-06 22:02:56
cvelist
cvelist
CVE-2021-45713
2021-12-26 21:46:38
nvd
nvd
CVE-2021-45713
2021-12-26 22:15:09
cve
cve
CVE-2021-45713
2021-12-26 22:15:09
prion
prion
Design/Logic Flaw
2021-12-26 22:15:00
osv
osv
Use After Free in rusqlite
2022-01-06 22:01:40
Use After Free in rusqlite
2022-01-06 22:02:56
Use After Free in rusqlite
2022-01-06 22:02:36
rustsec
rustsec
Incorrect Lifetime Bounds on Closures in `rusqlite`
2021-12-07 12:00:00