13 matches found
EUVD-2021-1826
Malware in sbrugna...
CVE-2021-26951
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
Out of bounds write in calamine
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
GHSA-PPQP-78XX-3R38 Out of bounds write in calamine
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
financ (>=0.1.0 <=0.3.0), fitparser (>=0.1.0 <=0.5.1) +14 more potentially affected by CVE-2021-26951 via calamine (>=0.11.8 <=0.16.2)
calamine CARGO version =0.11.8, =0.1.0, =0.1.0, =1.0.0, =0.2.0, =0.15.0, =0.11.0, =0.16.0, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.0.1, =0.0.2 and more Source cves: CVE-2021-26951 Source advisory: OSV:GHSA-PPQP-78XX-3R38...
CVE-2021-26951
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
CVE-2021-26951
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
Design/Logic Flaw
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
CVE-2021-26951
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...
CVE-2021-26951
CVE-2021-26951 affects the Rust crate calamine prior to 0.17.0. The issue arises from using Vec::set_len without proper memory claiming, which can result in uninitialized memory being exposed to a user-provided Read operation, demonstrated by Sectors::get. This can lead to out-of-bounds/heap memo...
office is unmaintained, use calamine instead
The office crate is unmaintained. Use calamine for reading excel files. Contact the office author for ownership of the package name...
RUSTSEC-2021-0034 office is unmaintained, use calamine instead
The office crate is unmaintained. Use calamine for reading excel files. Contact the office author for ownership of the package name...
financ (>=0.1.0 <=0.3.0), fitparser (>=0.1.0 <=0.5.1) +14 more potentially affected by CVE-2021-26951 via calamine (>=0.11.8 <=0.16.2)
calamine CARGO version =0.11.8, =0.1.0, =0.1.0, =1.0.0, =0.2.0, =0.15.0, =0.11.0, =0.16.0, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.0.1, =0.0.2 and more Source cves: CVE-2021-26951 Source advisory: OSV:RUSTSEC-2021-0015...