Lucene search
K

6 matches found

GitLab Advisory Database
GitLab Advisory Database
added 2021/08/25 12:0 a.m.7 views

Use-after-free in actix-http

An issue was discovered in the actix-http crate before 2.0.0-alpha.1 for Rust. There is a use-after-free in BodyStream...

7.5CVSS7.1AI score0.01406EPSS
Exploits1References5Affected Software1
RedHat Linux
RedHat Linux
added 2020/03/23 8:54 a.m.5 views

Mozilla: BodyStream:: OnInputStreamReady was missing protections against state confusion

The Mozilla Foundation Security Advisory describes this flaw as: By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash...

8.8CVSS7.3AI score0.02543EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/03/23 8:41 a.m.4 views

Mozilla: BodyStream:: OnInputStreamReady was missing protections against state confusion

The Mozilla Foundation Security Advisory describes this flaw as: By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash...

8.8CVSS7.3AI score0.02543EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/03/16 10:47 a.m.4 views

Mozilla: BodyStream:: OnInputStreamReady was missing protections against state confusion

The Mozilla Foundation Security Advisory describes this flaw as: By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash...

8.8CVSS7.3AI score0.02543EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/03/16 10:0 a.m.5 views

Mozilla: BodyStream:: OnInputStreamReady was missing protections against state confusion

The Mozilla Foundation Security Advisory describes this flaw as: By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash...

8.8CVSS7.3AI score0.02543EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/03/16 9:38 a.m.4 views

Mozilla: BodyStream:: OnInputStreamReady was missing protections against state confusion

The Mozilla Foundation Security Advisory describes this flaw as: By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash...

8.8CVSS7.3AI score0.02543EPSS
Exploits0References5
Rows per page
Query Builder