3 matches found
askii (>=0.1.0 <=0.5.4), atomsh (=0.1.0) +36 more potentially affected by CVE-2019-15546 via pancurses (>=0.11.0 <=0.16.1)
pancurses CARGO version =0.11.0, =0.1.0, =0.1.0, =0.1.0, =0.7.0, =0.1.0, =0.7.0, =0.2.0, =0.5.0, =0.1.0, =2.0.0, =0.2.0, =0.1.2, =0.1.5 and more Source cves: CVE-2019-15546 Source advisory: OSV:GHSA-M57C-4VVX-GJGQ...
CVE-2019-15546
CVE-2019-15546 affects the Rust pancurses crate up to version 0.16.1. The issue resides in printw and mvprintw format handling, where a Rust &str is passed to C, enabling a format-string attack. This can potentially allow writing to stack memory. Publicly documented advisories (RustSEC/RUSTSEC-20...
askii (>=0.1.0 <=0.5.4), atomsh (=0.1.0) +58 more potentially affected by CVE-2019-15546 via pancurses (>=0.11.0 <=0.9.0)
pancurses CARGO version =0.11.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.2, =0.1.0, =0.1.0, =0.16.0, =0.4.0, =0.13.1, =0.2.0, =0.3.1 and more Source cves: CVE-2019-15546 Source advisory: OSV:RUSTSEC-2019-0005...