Lucene search
GoogleOSV:CVE-2021-26951HistoryFeb 09, 2021 - 11:15 p.m.
CVE-2021-26951
2021-02-0923:15:13
Google
osv.dev
6
calamine
security issue
memory overwrite
rust
cve-2021-26951
sectors::get
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::set_len is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get.
Related
cvelist
cvelist
CVE-2021-26951
2021-02-09 22:07:49
prion
prion
Design/Logic Flaw
2021-02-09 23:15:00
osv
osv
`Sectors::get` accesses unclaimed/uninitialized memory
2021-01-06 12:00:00
Out of bounds write in calamine
2021-08-25 20:53:25
github
github
Out of bounds write in calamine
2021-08-25 20:53:25
rustsec
rustsec
`Sectors::get` accesses unclaimed/uninitialized memory
2021-01-06 12:00:00
cve
cve
CVE-2021-26951
2021-02-09 23:15:13
nvd
nvd
CVE-2021-26951
2021-02-09 23:15:13