Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:RUSTSEC-2019-0007
HistoryJun 13, 2019 - 12:00 p.m.

Processing of maliciously crafted length fields causes memory allocation SIGABRTs

2019-06-1312:00:00
Google
osv.dev
8

EPSS

0.001

Percentile

42.5%

JSON

Affected versions of this crate tried to preallocate a vector for an arbitrary amount of bytes announced by the ASN.1-DER length field without further checks.

This allows an attacker to trigger a SIGABRT by creating length fields that announce more bytes than the allocator can provide.

The flaw was corrected by not preallocating memory.

Related

rustsec 1
github 1
cvelist 1
cve 1
prion 1
osv 1
nvd 1
rustsec
rustsec
Processing of maliciously crafted length fields causes memory allocation SIGABRTs
2019-06-13 12:00:00
github
github
Memory exhaustion in asn1_der
2021-08-25 20:44:56
cvelist
cvelist
CVE-2019-15549
2019-08-26 16:55:10
cve
cve
CVE-2019-15549
2019-08-26 17:15:12
prion
prion
Design/Logic Flaw
2019-08-26 17:15:00
osv
osv
Memory exhaustion in asn1_der
2021-08-25 20:44:56
nvd
nvd
CVE-2019-15549
2019-08-26 17:15:12

EPSS

0.001

Percentile

42.5%

JSON
Related for OSV:RUSTSEC-2019-0007
rustsec1github1cvelist1cve1prion1osv1nvd1