4 matches found
EUVD-2022-0679
Malicious code in bioql PyPI...
CVE-2021-45703
An issue was discovered in the tectonicxdv crate before 0.1.12 for Rust. XdvParser::::process may read from uninitialized memory locations...
Rust 安全漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation.A security vulnerability exists in versions of Rust tectonicxdv crate prior to 0.1.12, which stems from XdvParser::::process can read data from uninitialized memory locations. No detailed vulnerability details ar...
`Read` on uninitialized buffer may cause UB ('tectonic_xdv' crate)
Affected versions of this crate passes an uninitialized buffer to a user-provided Read implementation. Arbitrary Read implementations can read from the uninitialized buffer memory exposure and also can return incorrect number of bytes written to the buffer. Reading from uninitialized memory...