2 matches found
GHSA-H3MF-4FWP-59C7 VecStorage Deserialize Allows Violation of Length Invariant
The Deserialize implementation for VecStorage did not maintain the invariant that the number of elements must equal nrows ncols. Deserialization of specially crafted inputs could allow memory access beyond allocation of the vector. This flaw was introduced in v0.11.0 086e6e due to the addition of...
glibc: Segmentation fault caused by passing out-of-range data to strftime()
It was found that out-of-range time values passed to the strftime function could result in an out-of-bounds memory access. This could lead to application crash or, potentially, information disclosure...