31 matches found
CVE-2021-38187
CVE-2021-38187 affects the Rust anymap crate up to version 0.12.1, with a soundness flaw caused by converting a *u8 to a *u64. Public records (NVD, OSV, GHSA, CNVD) describe this as a high‑/critical impact vulnerability; CVSSv3.1 base score 9.8 indicates CRITICAL severity and network attack vecto...
Rust 安全漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. a security vulnerability exists in the anymap crate of Mozilla Rust version 0.12.1, which can be exploited by attackers to compromise soundness by converting u8 to u64...
ABC-ECS (>=0.1.0 <=0.2.1), ABC_Game_Engine (>=0.1.0 <=0.1.2) +311 more potentially affected by CVE-2021-38187 via anymap (>=0.10.3 <=1.0.0-beta.2)
anymap CARGO version =0.10.3, =0.1.0, =0.1.0, =0.0.1, =1.0.0-alpha.1, =0.1.6, =0.1.0-alpha.2, =0.8.0, =0.1.0, =5.0.0, =5.2.2, =0.0.1-alpha+3, =0.1.1, =0.1.1, =0.1.0, =0.1.2 and more Source cves: CVE-2021-38187 Source advisory: OSV:RUSTSEC-2021-0065...
anymap is unmaintained.
The anymap crate does not appear to be maintained, and the most recent published version 0.12.1 includes a soundness bug. This has been fixed a few years ago, but was never released...
RUSTSEC-2021-0065 anymap is unmaintained.
The anymap crate does not appear to be maintained, and the most recent published version 0.12.1 includes a soundness bug. This has been fixed a few years ago, but was never released...
RHEL 2.1 / 3 : netpbm (RHSA-2005:843)
Updated netpbm packages that fix two security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The netpbm package contains a library of functions that support programs for handling various graphics file formats. A stack...
CVE-2005-2978
pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...
DEBIAN-CVE-2005-2978
pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...
netpbm, xloadimage security update
CentOS Errata and Security Advisory CESA-2005:793 Updated netpbm packages that fix a security issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The netpbm package contains a library of functions that support programs for...
Moderate: Red Hat Security Advisory: netpbm security update
Updated netpbm packages that fix a security issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The netpbm package contains a library of functions that support programs for handling various graphics file formats, including...
CVE-2005-2978
pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap PNM images to Portable Network Graphics PNG, which might allow attackers to execute arbitrary code by modifying the stack...