Lucene search
+L

4 matches found

NVD
NVD
added 2021/02/09 11:15 p.m.23 views

CVE-2021-26951

An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...

9.8CVSS0.01728EPSS
Exploits1References1
OSV
OSV
added 2021/02/09 11:15 p.m.16 views

CVE-2021-26951

An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...

9.8CVSS6.7AI score
Exploits0References1
CVE
CVE
added 2021/02/09 10:7 p.m.70 views

CVE-2021-26951

CVE-2021-26951 affects the Rust crate calamine prior to 0.17.0. The issue arises from using Vec::set_len without proper memory claiming, which can result in uninitialized memory being exposed to a user-provided Read operation, demonstrated by Sectors::get. This can lead to out-of-bounds/heap memo...

9.8CVSS9.2AI score0.01728EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2021/01/06 12:0 p.m.7 views

financ (>=0.1.0 <=0.3.0), fitparser (>=0.1.0 <=0.5.1) +14 more potentially affected by CVE-2021-26951 via calamine (>=0.11.8 <=0.16.2)

calamine CARGO version =0.11.8, =0.1.0, =0.1.0, =1.0.0, =0.2.0, =0.15.0, =0.11.0, =0.16.0, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.0.1, =0.0.2 and more Source cves: CVE-2021-26951 Source advisory: OSV:RUSTSEC-2021-0015...

9.8CVSS7.2AI score0.01728EPSS
Exploits1
Rows per page
Query Builder