Design/Logic Flaw

An issue was discovered in the truetype crate before 0.30.1 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation within Tape::takebytes...

Integer overflow

An issue was discovered in the bam crate before 0.1.3 for Rust. There is an integer underflow and out-of-bounds write during the loading of a bgzip block...

CVE-2021-28027

The CVE-2021-28027 issue affects the bam crate for Rust prior to version 0.1.3, where loading a bgzip block can trigger an integer underflow and an out-of-bounds write in the internal buffer. This is caused by how block_size and related constants are used to set the buffer length, allowing memory...

CVE-2021-28027

An issue was discovered in the bam crate before 0.1.3 for Rust. There is an integer underflow and out-of-bounds write during the loading of a bgzip block...

CVE-2021-28028

The CVE-2021-28028 issue affects the Rust crate toodee prior to 0.3.0. The vulnerability arises during row insertion where an iterator panic can lead to a double free . Multiple connected sources (Red Hat CVE, OSVGHSA entries, CNVD, NVD, and CNVD) corroborate the description: a panic during itera...

CVE-2021-28028

An issue was discovered in the toodee crate before 0.3.0 for Rust. Row insertion can cause a double free upon an iterator panic...

CVE-2021-28030

CVE-2021-28030 affects the Rust truetype crate prior to 0.30.1. The issue arises from a user-provided Read operation in Tape::take_bytes that can read contents from uninitialized memory. Impact is information disclosure of uninitialized memory. A fix was implemented by removing the unsafe usage a...

CVE-2021-28031

The CVE-2021-28031 issue affects the Rust scratchpad crate prior to 1.3.1, where the move_elements function could trigger a double-free if a panic occurs inside a user-supplied f function. Red Hat and OSV entries reiterate the same description and note the root cause: an unsafe path around ptr::r...

CVE-2021-28031

An issue was discovered in the scratchpad crate before 1.3.1 for Rust. The moveelements function can have a double-free upon a panic in a user-provided f function...

CVE-2021-28032

The CVE concerns the Rust crate nano_arena before 0.5.2. A flaw in the split_at logic allows two mutable references to the same element when Borrow behaves in certain ways, creating a potential for memory safety issues such as an out-of-bounds write or use-after-free. The issue is rooted in alias...

CVE-2021-28034

The CVE-2021-28034 issue affects the Rust stack_dst crate prior to 0.6.1. The root cause is in push_inner, which increases the internal array length and then calls val.clone(); if val.clone() panics, a double free/memory-safety issue can occur. Several connected advisories (Red Hat, OSV, GHSA, CN...

CVE-2021-28034

An issue was discovered in the stackdst crate before 0.6.1 for Rust. Because of the pushinner behavior, a double free can occur upon a val.clone panic...

CVE-2021-28035

CVE-2021-28035 affects the Rust crate stack_dst, prior to 0.6.1. The root cause is the push_inner behavior, which can cause a drop of uninitialized memory if a val.clone() panics. The issue has been fixed in a later commit (and by upgrading to 0.6.1+). If exploited, this can lead to memory safety...

CVE-2021-28035

An issue was discovered in the stackdst crate before 0.6.1 for Rust. Because of the pushinner behavior, a drop of uninitialized memory can occur upon a val.clone panic...

CVE-2021-28036

The CVE-2021-28036 issue affects the Rust quinn crate prior to version 0.7.0. It relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures, which can lead to invalid memory access if memory layout assumptions differ from the system sockaddr layout. The available...

CVE-2021-28036

An issue was discovered in the quinn crate before 0.7.0 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures...

CVE-2021-28037

The CVE-2021-28037 issue affects the Rust internment crate prior to 0.4.2. It arises from an unconditional impl of Sync for Intern, enabling a data race that can cause memory corruption. Documented impacts are memory contention and potential corruption. The vulnerability is mitigated by upgrading...

CVE-2021-28033

The CVE-2021-28033 issue concerns the byte_struct crate for Rust pre-0.6.1, where deserializing via a certain method could cause a drop of uninitialized memory when panicking. Affected component: byte_struct (Rust) before 0.6.1. Impact described as potential memory safety failure during deseriali...

CVE-2021-28029

The CVE-2021-28029 issue affects the Rust crate toodee prior to version 0.3.0. The vulnerability arises from the row-insertion feature, which could allow an attacker to read contents of uninitialized memory locations. Public reports from multiple sources (Red Hat, GHSA, OSV) confirm the uninitial...

CVE-2021-28029

An issue was discovered in the toodee crate before 0.3.0 for Rust. The row-insertion feature allows attackers to read the contents of uninitialized memory locations...