CVE-2021-28308

An issue was discovered in the fltk crate before 0.15.3 for Rust. There is an out-of bounds read because the pixmap constructor lacks pixmap input validation...

fltk crate for Rust 代码问题漏洞

fltk crate for Rust is a cross-platform lightweight GUI library. It can be statically linked to produce small, standalone and fast GUI applications. A security vulnerability exists in fltk crate before 0.15.3 for Rust, which stems from the presence of a null pointer dereference...

fltk crate for Rust 缓冲区错误漏洞

fltk crate for Rust is a cross-platform lightweight GUI library. It can be statically linked to produce small, standalone and fast GUI applications. A security vulnerability exists in fltk crate before 0.15.3 for Rust, which stems from a read overrun in the pixmap constructor due to a lack of...

Unspecified Vulnerability in Rust (CNVD-2021-17265)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in toodee crate before 0.3.0 for Rust, which can be exploited by an attacker to read the contents of uninitialized memory locations...

Rust Resource Management Error Vulnerability (CNVD-2021-17260)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in stackdst crate before 0.6.1 for Rust, which stems from the pushinner behavior, with double free at val.clone.No detailed vulnerability details are provided at...

Unspecified Vulnerability in Rust (CNVD-2021-17264)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in truetype crate before 0.30.1 for Rust, which originates from a read operation reading the contents of an uninitialized memory location. No details of the vulnerability are...

Rust Number Error Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in bam crate before 0.1.3 for Rust, which stems from an integer underflow and out-of-bounds write during loading of a bgzip block, no details of the vulnerability are provided at...

Rust Resource Management Error Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in toodee crate before 0.3.0 for Rust, which stems from causing a double free when the iterator is panic.No details of the vulnerability are provided at this time...

Rust Resource Management Error Vulnerability (CNVD-2021-17263)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in scratchpad crate before 1.3.1 for Rust, which stems from the move elements function being able to use double free. no details of the vulnerability are currently available...

Unspecified Vulnerability in Rust (CNVD-2021-17257)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in internment crate before 0.4.2 for Rust, which stems from an unconditional implementation of Sync that results in memory-corrupted data contention. No detailed vulnerability...

Unspecified Vulnerability in Rust (CNVD-2021-17262)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in nanoarena crate before 0.5.2 for Rust, which can be exploited by attackers to cause a write out-of-bounds or use-after-free...

Rust Buffer Overflow Vulnerability (CNVD-2021-17261)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in bytestruct crate before 0.6.1 for Rust, which stems from a problem with the deserialization method that results in the loss of uninitialized memory. No details of the...

Unspecified Vulnerability in Rust (CNVD-2021-17259)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in stackdst crate before 0.6.1 for Rust, where uninitialized memory is lost during a val.clone panic. No details of the vulnerability are provided at this time...

Rust Buffer Overflow Vulnerability (CNVD-2021-17258)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in quinn crate before 0.7.0 for Rust, which stems from having invalid memory access to certain versions of the standard library. No details of the vulnerability are current...

Mozilla Rust Cross-Site Scripting Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A cross-site scripting vulnerability exists in Rust in versions prior to comrak crate 0.9.1, which stems from the fact that the protection mechanism for data: and javascript: URIs is case-sensitive. No details o...

booklibrs (>=0.1.0 <=1.1.6), boostvoronoi (>=0.4.2 <=0.6.0) +8 more potentially affected by CVE-2021-28306 +2 more via fltk (>=0.13.15 <=0.15.15)

fltk CARGO version =0.13.15, =0.1.0, =0.4.2, =0.3.1, =0.2.0, =0.1.0, =0.1.9, =0.1.0, =0.0.5, =0.1.1, =0.9.0, =0.9.15 Source cves: CVE-2021-28306, CVE-2021-28307, CVE-2021-28308 Source advisory: OSV:RUSTSEC-2021-0038...

artifact-app (>=0.5.0 <=0.9.2), cargo-registry (=0.1.0) +25 more potentially affected by CVE-2021-28305 via diesel (>=0.10.1 <=1.3.3)

diesel CARGO version =0.10.1, =0.5.0, =0.12.0, =0.8.0, =0.3.0, =0.8.0, =0.7.0, =0.99.0, =0.5.1, =0.11.0, =0.1.0, =0.99.0, =0.1.0, =0.99.0, =1.3.0 and more Source cves: CVE-2021-28305 Source advisory: OSV:RUSTSEC-2021-0037...

CVE-2021-28033

An issue was discovered in the bytestruct crate before 0.6.1 for Rust. There can be a drop of uninitialized memory if a certain deserialization method panics...

CVE-2021-28031

An issue was discovered in the scratchpad crate before 1.3.1 for Rust. The moveelements function can have a double-free upon a panic in a user-provided f function...

CVE-2021-28032

An issue was discovered in the nanoarena crate before 0.5.2 for Rust. There is an aliasing violation in splitat because two mutable references can exist for the same element, if Borrow behaves in certain ways. This can have a resultant out-of-bounds write or use-after-free...