Lucene search
RustsecRUSTSEC-2021-0068HistoryMay 19, 2021 - 12:00 p.m.
Soundness issue in `iced-x86` versions <= 1.10.3
2021-05-1912:00:00
rustsec.org
9
0.003 Low
EPSS
Percentile
68.2%
Versions of iced-x86 <= 1.10.3 invoke undefined behavior which may cause soundness
issues in crates using the iced_x86::Decoder struct. The Decoder::new() function
made a call to slice.get_unchecked(slice.length()) to get the end position of
the input buffer. The flaw was fixed with safe logic that does not invoke undefined
behavior.
More details can be found at <https://github.com/icedland/iced/issues/168>.
Related
osv
osv
Soundness issue in `iced-x86` versions <= 1.10.3
2021-05-19 12:00:00
Incorrect buffer size calculation in iced-x86
2021-08-25 20:55:47
cve
cve
CVE-2021-38188
2021-08-08 06:15:08
cnvd
cnvd
Mozilla Rust has an unspecified vulnerability (CNVD-2021-61408)
2021-08-10 00:00:00
cvelist
cvelist
CVE-2021-38188
2021-08-08 05:10:26
nvd
nvd
CVE-2021-38188
2021-08-08 06:15:08
github
github
Incorrect buffer size calculation in iced-x86
2021-08-25 20:55:47
prion
prion
Code injection
2021-08-08 06:15:00