Lucene search
GoogleOSV:CVE-2021-27378HistoryFeb 18, 2021 - 4:15 a.m.
CVE-2021-27378
2021-02-1804:15:11
Google
osv.dev
4
An issue was discovered in the rand_core crate before 0.6.2 for Rust. Because read_u32_into and read_u64_into mishandle certain buffer-length checks, a random number generator may be seeded with too little data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rand | eq | rand_distr-0.4.0 | |
| rand | eq | rand_chacha-0.3.0 | |
| rand | eq | rand_pcg-0.3.0 | |
| rand | eq | 0.8.2 | |
| rand | eq | rand_core-0.6.1 | |
| rand | eq | 0.8.1 | |
| rand | eq | 0.8.0 | |
| rand | eq | rand_core-0.6.0 | |
| rand | eq | rand_hc-0.3.0 | |
| rand | eq | 0.8.3 |
Related
osv
osv
Incorrect check on buffer length when seeding RNGs
2021-02-12 12:00:00
Incorrect check on buffer length in rand_core
2021-08-25 20:52:16
cvelist
cvelist
CVE-2021-27378
2021-02-18 03:35:07
cve
cve
CVE-2021-27378
2021-02-18 04:15:11
rustsec
rustsec
Incorrect check on buffer length when seeding RNGs
2021-02-12 12:00:00
github
github
Incorrect check on buffer length in rand_core
2021-08-25 20:52:16
debiancve
debiancve
CVE-2021-27378
2021-02-18 04:15:11
cbl_mariner
cbl_mariner
CVE-2021-27378 affecting package librsvg2 for versions less than 2.58.1-1
2024-06-21 09:32:44
prion
prion
Buffer overflow
2021-02-18 04:15:00
nvd
nvd
CVE-2021-27378
2021-02-18 04:15:11
ubuntucve
ubuntucve
CVE-2021-27378
2021-02-18 00:00:00