5 matches found
booklibrs (>=0.1.0 <=1.1.6), boostvoronoi (>=0.4.2 <=0.6.0) +8 more potentially affected by CVE-2021-28306 +2 more via fltk (>=0.13.15 <=0.15.15)
fltk CARGO version =0.13.15, =0.1.0, =0.4.2, =0.3.1, =0.2.0, =0.1.0, =0.1.9, =0.1.0, =0.0.5, =0.1.1, =0.9.0, =0.9.15 Source cves: CVE-2021-28306, CVE-2021-28307, CVE-2021-28308 Source advisory: OSV:GHSA-VJMG-PC8H-P6P8...
booklibrs (>=0.1.0 <=1.1.6), boostvoronoi (>=0.4.2 <=0.6.0) +8 more potentially affected by CVE-2021-28306 +2 more via fltk (>=0.13.15 <=0.15.15)
fltk CARGO version =0.13.15, =0.1.0, =0.4.2, =0.3.1, =0.2.0, =0.1.0, =0.1.9, =0.1.0, =0.0.5, =0.1.1, =0.9.0, =0.9.15 Source cves: CVE-2021-28306, CVE-2021-28307, CVE-2021-28308 Source advisory: OSV:GHSA-5PG8-H4GV-M3P8...
booklibrs (>=0.1.0 <=1.1.6), boostvoronoi (>=0.4.2 <=0.6.0) +8 more potentially affected by CVE-2021-28306 +2 more via fltk (>=0.13.15 <=0.15.15)
fltk CARGO version =0.13.15, =0.1.0, =0.4.2, =0.3.1, =0.2.0, =0.1.0, =0.1.9, =0.1.0, =0.0.5, =0.1.1, =0.9.0, =0.9.15 Source cves: CVE-2021-28306, CVE-2021-28307, CVE-2021-28308 Source advisory: OSV:GHSA-7QCC-G2M9-8533...
CVE-2021-28306
creationtimestamp| type| source ---|---|--- 2021-03-12 12:55:24+00:00| seen| https://t.me/cibsecurity/24838...
CVE-2021-28306
CVE-2021-28306 affects the Rust fltk crate (before 0.15.3). The issue is a NULL pointer dereference when using a multi-label type if the image is nonexistent (also mapped to an out-of-bounds read in related advisories). The root cause is dereferencing a null/invalid image reference, potentially l...