Use of Uninitialized Resource in acc_reader.

2022-01-0622:17:38

Google

osv.dev

0.002 Low

EPSS

Percentile

59.6%

An issue was discovered in the acc_reader crate through 2020-12-27 for Rust. read_up_to may read from uninitialized memory locations.

CPENameOperatorVersion
acc_readerle2.0.0

CPE	Name	Operator	Version
	acc_reader	le	2.0.0

References

github.com/netvl/acc_reader

github.com/netvl/acc_reader/issues/1

nvd.nist.gov/vuln/detail/CVE-2020-36513

raw.githubusercontent.com/rustsec/advisory-db/main/crates/acc_reader/RUSTSEC-2020-0155.md

rustsec.org/advisories/RUSTSEC-2020-0155.html

0.002 Low

EPSS

Percentile

59.6%

Related for OSV:GHSA-799F-R78P-GQ9C