Rust traitobject crate 缓冲区错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in traitobject crate in versions of Mozilla Rust prior to 2020-06-01, which stems from the fact that it incorrectly expects a fat pointer, and can be exploited by an attack...

PT-2020-17513 · Rust · Traitobject Crate

Name of the Vulnerable Software and Affected Versions: traitobject crate through 2020-06-01 Description: The issue arises from false expectations about fat pointers in the traitobject crate, which could lead to memory corruption. This occurs because the crate assumes the first element in a fat...