Lucene search
+L

6 matches found

github
github
added 2021/08/25 9:0 p.m.14 views

Assumed memory layout of std::net::SocketAddr

The socket2 crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

2.5AI score
Exploits0References3Affected Software1
github
github
added 2021/08/25 8:50 p.m.29 views

mio invalidly assumes the memory layout of std::net::SocketAddr

The mio crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...

5.5CVSS5.5AI score0.00389EPSS
Exploits1References6Affected Software1
nvd
nvd
added 2021/02/18 4:15 a.m.35 views

CVE-2021-27376

An issue was discovered in the nb-connect crate before 1.0.3 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures...

9.8CVSS0.01448EPSS
Exploits1References1
cvelist
cvelist
added 2021/02/18 3:35 a.m.38 views

CVE-2021-27376

An issue was discovered in the nb-connect crate before 1.0.3 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures...

9.7AI score0.01448EPSS
Exploits1References1
cve
cve
added 2021/02/18 3:35 a.m.102 views

CVE-2021-27376

CVE-2021-27376 affects the Rust crate nb-connect , file/socket handling. The issue arises from a direct cast of std::net::SocketAddrV4 and SocketAddrV6, relying on the wrong assumption about memory layout, which can lead to invalid memory access. The Red Hat and GHSA/RustSec entries confirm the r...

9.8CVSS9.3AI score0.01448EPSS
Exploits1References1Affected Software1
rustsec
rustsec
added 2021/02/14 12:0 p.m.26 views

`nb-connect` invalidly assumes the memory layout of std::net::SocketAddr

The nb-connect crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about...

9.8CVSS2.7AI score0.01448EPSS
Exploits1Affected Software1
Rows per page
Query Builder