Boa (>=0.9.0 <=0.10.0), GetPDB (>=0.1.0 <=1.0.1) +5147 more potentially affected by CVE-2018-20991 via smallvec (>=0.3.4 <=0.6.14)

smallvec CARGO version =0.3.4, =0.9.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.2.0, =0.5.3, =0.1.0, =0.5.0, =0.5.0, =0.5.2 and more Source cves: CVE-2018-20991 Source advisory: OSV:GHSA-RXR4-X558-X7HW...

GHSA-RXR4-X558-X7HW Double free in smallvec

If an iterator passed to SmallVec::insertmany panicked in Iterator::next, destructors were run during unwinding while the vector was in an inconsistent state, possibly causing a double free a destructor running on two copies of the same value. This is fixed in smallvec 0.6.3 by ensuring that the...

Double free in smallvec

If an iterator passed to SmallVec::insertmany panicked in Iterator::next, destructors were run during unwinding while the vector was in an inconsistent state, possibly causing a double free a destructor running on two copies of the same value. This is fixed in smallvec 0.6.3 by ensuring that the...

MGASA-2021-0234 Updated librsvg packages fix a security vulnerability

This update patches the vendored smallvec Rust crate in librsvg to fix a security vulnerability: The Iterator implementation mishandles destructors, leading to a double free CVE-2021-25900...

Updated librsvg packages fix a security vulnerability

This update patches the vendored smallvec Rust crate in librsvg to fix a security vulnerability: The Iterator implementation mishandles destructors, leading to a double free CVE-2021-25900...

SUSE SLED15 / SLES15 Security Update : librsvg (SUSE-SU-2021:1310-1)

This update for librsvg fixes the following issues : librsvg was updated to 2.42.9 : - Update dependent crates that had security vulnerabilities: smallvec to 0.6.14 - RUSTSEC-2018-0003 - CVE-2018-20991 bsc1148293 -the bundled version of the cssparser crate now builds correctly on Rust 1.43...

DEBIAN-CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

UBUNTU-CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

Heap overflow

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

Rust Buffer Error Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer error vulnerability exists in Rust smallvec crate before 0.6.14 and 1.x before 1.6.1, which stems from a heap-based buffer overflow in SmallVec::insert many...

CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

CVE-2021-25900

CVE-2021-25900 affects the Rust smallvec crate prior to 0.6.14 and 1.x prior to 1.6.1, where SmallVec::insert_many can cause a heap-based buffer overflow. The issue is mitigated by upgrading to smallvec 0.6.14 or 1.6.1. In practice, vulnerable code paths may impact crates that vendor smallvec (e....

CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

Buffer overflow in SmallVec::insert_many

A bug in the SmallVec::insertmany method caused it to allocate a buffer that was smaller than needed. It then wrote past the end of the buffer, causing a buffer overflow and memory corruption on the heap. This bug was only triggered if the iterator passed to insertmany yielded more items than the...

RUSTSEC-2021-0003 Buffer overflow in SmallVec::insert_many

A bug in the SmallVec::insertmany method caused it to allocate a buffer that was smaller than needed. It then wrote past the end of the buffer, causing a buffer overflow and memory corruption on the heap. This bug was only triggered if the iterator passed to insertmany yielded more items than the...

ABC_Game_Engine (>=0.1.0 <=0.1.2), AitSar (=0.1.1) +40025 more potentially affected by CVE-2021-25900 via smallvec (>=1.0.0 <=1.2.0)

smallvec CARGO version =1.0.0, =0.1.0, =0.1.0, =0.1.0, =0.11.0, =0.1.0-beta.1, =1.0.2, =0.1.0, =0.1.0, =0.1.1 - GuiNistRs =0.1.0 and more Source cves: CVE-2021-25900 Source advisory: OSV:RUSTSEC-2021-0003...

CVE-2019-15551

An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is a double free for certain grow attempts with the current capacity...