3 matches found
LemoGUI (=0.0.1-nightly), aravis-utils (=0.7.0) +52 more potentially affected by CVE-2021-45689 via gfx-auxil (=0.10.0)
gfx-auxil CARGO version =0.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on gfx-auxil and may be impacted: - LemoGUI =0.0.1-nightly - aravis-utils =0.7.0 - autograph =0.1.0, =0.1.2, =0.1.0, =0.5.0, =1.12.0, =0.19.0, =0.12.0, =0.5.1, =0.5.0, =0.5.2 ...
LemoGUI (=0.0.1-nightly), aravis-utils (=0.7.0) +52 more potentially affected by CVE-2021-45689 via gfx-auxil (=0.10.0)
gfx-auxil CARGO version =0.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on gfx-auxil and may be impacted: - LemoGUI =0.0.1-nightly - aravis-utils =0.7.0 - autograph =0.1.0, =0.1.2, =0.1.0, =0.5.0, =1.12.0, =0.19.0, =0.12.0, =0.5.1, =0.5.0, =0.5.2 ...
CVE-2021-45689
CVE-2021-45689 affects the Rust crate gfx-auxil . The function gfx_auxil::read_spirv may read from uninitialized memory, per the NVD entry (through 2021-01-07). Root cause is reading uninitialized memory in the read_spirv path. Impact is memory safety issues (undefined behavior) with potential pa...