46 matches found
CVE-2019-25055
An issue was discovered in the libpulse-binding crate before 2.6.0 for Rust. It mishandles a panic that crosses a Foreign Function Interface FFI boundary...
CVE-2019-25055
An issue was discovered in the libpulse-binding crate before 2.6.0 for Rust. It mishandles a panic that crosses a Foreign Function Interface FFI boundary...
Design/Logic Flaw
An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. getcontext can cause a use-after-free...
Design/Logic Flaw
An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. getformatinfo can cause a use-after-free...
Rust libpulse-binding crate 安全漏洞
Rust libpulse-binding crate is the repository that contains sys FFI and binding libraries crates for connecting to PulseAudio PA from the Rust programming language. A security vulnerability exists in Rust libpulse-binding crate versions prior to 2.6.0, which stems from a boundary error in the...
Rust libpulse-binding crate 资源管理错误漏洞
Rust libpulse-binding crate is the repository that contains sys FFI and binding libraries crates for connecting to PulseAudio PA from the Rust programming language. A security vulnerability exists in versions of Rust libpulse-binding crate prior to 1.2.1 that can lead to resource management error...
CVE-2018-25027
An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. getformatinfo can cause a use-after-free...
CVE-2018-25027
CVE-2018-25027 affects the Rust libpulse-binding crate prior to 1.2.1. The issue is a use-after-free in objects returned by get_format_info (and get_context per related advisories), leading to potential memory safety problems in PulseAudio bindings. Affected component: libpulse-binding (Rust crat...
CVE-2018-25028
An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. getcontext can cause a use-after-free...
CVE-2018-25028
CVE-2018-25028 affecting the Rust libpulse-binding crate prior to 1.2.1. The issue is a use-after-free in get_context (memory corruption risk) due to improper handling of underlying C objects. Public sources consistently describe this as a use-after-free vulnerability in the library, with multipl...
CVE-2019-25055
The CVE-2019-25055 entry concerns the libpulse-binding crate for Rust (pre-2.6.0). The issue is a panic that is mishandled across an FFI boundary, causing undefined behavior. Affected versions prior to 2.6.0 expose a boundary error in the FFI during panic propagation; this is the underlying root ...
CVE-2019-25055
An issue was discovered in the libpulse-binding crate before 2.6.0 for Rust. It mishandles a panic that crosses a Foreign Function Interface FFI boundary...
GHSA-6GVC-4JVJ-PWQ4 Duplicate Advisory: Use after free in libpulse-binding
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-f56g-chqp-22m9. This link is maintained to preserve external references. Original Description An issue was discovered in the libpulse-binding crate before 2.5.0 for Rust. proplist::Iterator can cause a...
Duplicate Advisory: Use after free in libpulse-binding
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-f56g-chqp-22m9. This link is maintained to preserve external references. Original Description An issue was discovered in the libpulse-binding crate before 2.5.0 for Rust. proplist::Iterator can cause a...
GHSA-WCXC-JF6C-8RX9 Duplicate Advisory: Uncaught Exception in libpulse-binding
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-xvcg-2q82-r87j. This link is maintained to preserve external references. Original Description Affected versions of this crate failed to catch panics crossing FFI boundaries via callbacks, which is a form of UB...
Duplicate Advisory: Uncaught Exception in libpulse-binding
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-xvcg-2q82-r87j. This link is maintained to preserve external references. Original Description Affected versions of this crate failed to catch panics crossing FFI boundaries via callbacks, which is a form of UB...
GHSA-GHPQ-VJXW-CH5W Use after free in libpulse-binding
Overview Version 1.2.1 of the libpulse-binding Rust crate, released on the 15th of June 2018, fixed a pair of use-after-free issues with the objects returned by the getformatinfo and getcontext methods of Stream objects. These objects were mistakenly being constructed without setting an important...
Use after free in libpulse-binding
Overview Version 1.2.1 of the libpulse-binding Rust crate, released on the 15th of June 2018, fixed a pair of use-after-free issues with the objects returned by the getformatinfo and getcontext methods of Stream objects. These objects were mistakenly being constructed without setting an important...
Rust Resource Management Error Vulnerability (CNVD-2021-37532)
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in Rust libpulse-binding crate versions prior to 2.5.0, which stems from proplist::Iterator leading to use-after-free.No detailed vulnerability details are provid...
CVE-2018-25001
An issue was discovered in the libpulse-binding crate before 2.5.0 for Rust. proplist::Iterator can cause a use-after-free...