Linux Distros Unpatched Vulnerability : CVE-2019-25001

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the serdecbor crate before 0.10.2 for Rust. The CBOR deserializer can cause stack consumption via nested semantic tags. CVE-2019-2500...

CVE-2019-25001

An issue was discovered in the serdecbor crate before 0.10.2 for Rust. The CBOR deserializer can cause stack consumption via nested semantic tags...

Boa (>=0.4.0 <=0.13.1), HPGO (=0.9.2) +3707 more potentially affected by unknown CVE via serde_cbor (>=0.10.2 <=0.9.0)

serdecbor CARGO version =0.10.2, =0.4.0, =0.1.0, =0.1.0, =0.1.0, =0.0.2, =0.4.1, =0.8.0, =0.9.0, =0.1.0, =0.1.0, =1.0.0, =1.0.3 - accurate =0.3.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0127...

Rust 缓冲区错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in Rust serdecbor crate versions prior to 0.10.2, which stems from the fact that the CBOR deserializer may cause stack consumption via nested semantic tags. No detailed...