9498 matches found
CVE-2019-15546
CVE-2019-15546 affects the Rust pancurses crate up to version 0.16.1. The issue resides in printw and mvprintw format handling, where a Rust &str is passed to C, enabling a format-string attack. This can potentially allow writing to stack memory. Publicly documented advisories (RustSEC/RUSTSEC-20...
CVE-2019-15547
The CVE-2019-15547 entry concerns the ncurses crate for Rust, affected up to version 5.99.0. The root cause is improper handling of C format arguments in the printw family of functions, leading to format string issues. The provided documents describe the vulnerability's presence but do not specif...
CVE-2019-15547
Removed by vendor...
CVE-2019-15547
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are format string issues in printw functions because C format arguments are mishandled...
CVE-2019-15548
The CVE-2019-15548 issue affects the ncurses crate for Rust (up to version 5.99.0). The vulnerability arises from buffer overflows in instr and mvwinstr when interacting with C functions, caused by mishandling between Rust and C boundaries. Impact is described as potential buffer/heap overflow; C...
CVE-2019-15548
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are instr and mvwinstr buffer overflows because interaction with C functions is mishandled...
CVE-2019-15549
An issue was discovered in the asn1der crate before 0.6.2 for Rust. Attackers can trigger memory exhaustion by supplying a large value in a length field...
CVE-2019-15549
CVE-2019-15549 affects the asn1_der crate for Rust prior to 0.6.2. Root cause: it preallocated memory based on a maliciously crafted ASN.1-DER length field, enabling memory exhaustion. Impact: potential denial of service due to memory exhaustion; CVSS information in sources indicates high impact ...
CVE-2019-15552
An issue was discovered in the libflate crate before 0.1.25 for Rust. MultiDecoder::read has a use-after-free, leading to arbitrary code execution...
DEBIAN-CVE-2019-15553
An issue was discovered in the memoffset crate before 0.5.0 for Rust. offsetof and spanof can cause exposure of uninitialized memory...
CVE-2019-15551
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is a double free for certain grow attempts with the current capacity...
DEBIAN-CVE-2019-15552
An issue was discovered in the libflate crate before 0.1.25 for Rust. MultiDecoder::read has a use-after-free, leading to arbitrary code execution...
DEBIAN-CVE-2019-15554
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity...
CVE-2019-15554
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity...
CVE-2019-15552
An issue was discovered in the libflate crate before 0.1.25 for Rust. MultiDecoder::read has a use-after-free, leading to arbitrary code execution...
CVE-2019-15551
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is a double free for certain grow attempts with the current capacity...
CVE-2019-15554
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity...
CVE-2019-15550
An issue was discovered in the simd-json crate before 0.1.15 for Rust. There is an out-of-bounds read and an incorrect crossing of a page boundary...
CVE-2018-21000
An issue was discovered in the safe-transmute crate before 0.10.1 for Rust. A constructor's arguments are in the wrong order, causing heap memory corruption...
CVE-2018-20991
An issue was discovered in the smallvec crate before 0.6.3 for Rust. The Iterator implementation mishandles destructors, leading to a double free...