Use-after-free in yottadb

🗓️ 25 Aug 2021 20:30:55Reported by GitHub Advisory DatabaseType

Issue in yottadb crate for Rust, use-after-free in memory-allocatio

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2021-27377	18 Feb 202103:35	–	cvelist
CVE	CVE-2021-27377	18 Feb 202104:15	–	cve
Prion	Design/Logic Flaw	18 Feb 202104:15	–	prion
NVD	CVE-2021-27377	18 Feb 202104:15	–	nvd
OSV	Use-after-free in yottadb	25 Aug 202120:55	–	osv
OSV	Use-after-free in `subscript_next` and `subscript_prev` wrappers	9 Feb 202112:00	–	osv
RustSec	Use-after-free in `subscript_next` and `subscript_prev` wrappers	9 Feb 202112:00	–	rustsec

Vulners

Node

yottadb yottadbRange<1.2.0

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-27377
gitlab	www.gitlab.com/YottaDB/Lang/YDBRust/-/issues/40
rustsec	www.rustsec.org/advisories/RUSTSEC-2021-0022.html
github	www.github.com/advisories/GHSA-9658-c26v-7qvf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Aug 2021 20:55Current

2Low risk

Vulners AI Score2

CVSS27.5

CVSS39.8

EPSS0.01222

CWE-416