2 matches found
CVE-2018-20992
The CVE-2018-20992 issue affects the Rust Claxon crate (pre-0.4.1). A decode-buffer size handling flaw allowed uninitialized memory to be exposed; parts of the decode buffer could be overwritten or revealed depending on the bitstream value. Public descriptions (e.g., GHSA and RustSec advisories) ...
audrey (=0.1.0) potentially affected by CVE-2018-20992 via claxon (=0.2.1)
claxon CARGO version =0.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on claxon and may be impacted: - audrey =0.1.0 Source cves: CVE-2018-20992 Source advisory: OSV:RUSTSEC-2018-0004...