2 matches found
RUSTSEC-2023-0054 Use-after-free in `vec_insert_bytes`
Incorrect reallocation logic in the function vecinsertbytes causes a use-after-free. This function does not have to be called directly to trigger the vulnerability because many methods on EncodingWriter call this function internally. The mail-\ suite is unmaintained and the upstream sources have...
The vulnerability of the setuid function in the UNIX command shell Zsh allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failure.
The vulnerability of the setuid function in the UNIX command shell Zsh is related to incorrect reallocation of the user ID. Exploitation of this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...