PT-2024-40398 · Dbn · Dbn

Name of the Vulnerable Software and Affected Versions: dbn crate affected versions not specified Description: The issue occurs in the c chars to str function within the dbn crate, specifically when the strlen function is called. This happens because the CStr::from ptr function in Rust expects a...

AZL-48342 CVE-2024-5991 affecting package mariadb for versions less than 10.6.9-4

In function MatchDomainName, input param str is treated as a NULL terminated string despite being user provided and unchecked. Specifically, the function X509checkhost takes in a pointer and length to check against, with no requirements that it be NULL terminated. If a caller was attempting to do...