186 matches found
CVE-2022-35481
OTFCC v0.10.4 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S...
CVE-2022-35481
OTFCC v0.10.4 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S...
CVE-2022-35481
OTFCC v0.10.4 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S...
CVE-2022-35101
CVE-2022-35101 concerns SWFTools. The vulnerability arises from a segmentation fault in the internal sequence /multiarch/memset-vec-unaligned-erms.S within SWFTools commit 772e55a2. Affected item is the SWFTools package (specific versions not enumerated in provided docs). Impact details from CVSS...
CVE-2022-35101
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via /multiarch/memset-vec-unaligned-erms.S...
SWFTools 缓冲区错误漏洞
SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools that stems from a segmentation violation in /multiarch/memset-vec-unaligned-erms...
PT-2022-6623
Name of the Vulnerable Software and Affected Versions Trend Micro Apex Central on-premise affected versions not specified Description The issue allows authenticated users to perform a SQL injection, potentially leading to remote code execution. An attacker must first obtain authentication on the...
vec-const attempts to construct a Vec from a pointer to a const slice
Affected versions of this crate claimed to construct a const Vec with nonzero length and capacity, but that cannot be done because such a Vec requires a pointer from an allocator. The implementation was later changed to just construct a std::borrow::Cow...
GHSA-JMWX-R3GQ-QQ3P vec-const attempts to construct a Vec from a pointer to a const slice
Affected versions of this crate claimed to construct a const Vec with nonzero length and capacity, but that cannot be done because such a Vec requires a pointer from an allocator. The implementation was later changed to just construct a std::borrow::Cow...
insert_slice_clone can double drop if Clone panics.
Affected versions of this crate used ptr::copy when inserting into the middle of a Vec. When ownership was temporarily duplicated during this copy, it calls the clone method of a user provided element. This issue can result in an element being double-freed if the clone call panics. Commit 20cb73d...
GHSA-68P4-PJPF-XWCQ insert_slice_clone can double drop if Clone panics.
Affected versions of this crate used ptr::copy when inserting into the middle of a Vec. When ownership was temporarily duplicated during this copy, it calls the clone method of a user provided element. This issue can result in an element being double-freed if the clone call panics. Commit 20cb73d...
Dep Group Remote Memory Exhaustion (Denial of Service) in ckb
Impact A remote attacker could exploit this vulnerability to exhaust ckb process memory of an affected node. Patches Upgrade to 0.43.1 or later. References After resolving the outpoints of one dep group, we put the corresponding content into a vec...
RUSTSEC-2022-0078 Use-after-free due to a lifetime error in `Vec::into_iter()`
In affected versions of this crate, the lifetime of the iterator produced by Vec::intoiter is not constrained to the lifetime of the Bump that allocated the vector's memory. Using the iterator after the Bump is dropped causes use-after-free accesses. The following example demonstrates memory...
Use-after-free due to a lifetime error in `Vec::into_iter()`
In affected versions of this crate, the lifetime of the iterator produced by Vec::intoiter is not constrained to the lifetime of the Bump that allocated the vector's memory. Using the iterator after the Bump is dropped causes use-after-free accesses. The following example demonstrates memory...
Out-of-bounds Write in vec-const
An issue was discovered in the vec-const crate before 2.0.0 for Rust. It tries to construct a Vec from a pointer to a const slice, leading to memory corruption...
GHSA-X76R-966H-5QV9 Out-of-bounds Write in vec-const
An issue was discovered in the vec-const crate before 2.0.0 for Rust. It tries to construct a Vec from a pointer to a const slice, leading to memory corruption...
Rust vec-const crate memory corruption vulnerability
Rust vec-const crate is a program written in the Rust language with specific functionality. security vulnerabilities exist in versions of Rust vec-const crate prior to 2.0.0, which can be exploited by attackers to cause memory corruption...
CVE-2021-45680
An issue was discovered in the vec-const crate before 2.0.0 for Rust. It tries to construct a Vec from a pointer to a const slice, leading to memory corruption...
Memory corruption
An issue was discovered in the vec-const crate before 2.0.0 for Rust. It tries to construct a Vec from a pointer to a const slice, leading to memory corruption...
Rust vec-const crate 缓冲区错误漏洞
Rust vec-const crate is a program written in the Rust language with specific functionality. security vulnerabilities exist in versions of Rust vec-const crate prior to 2.0.0, which can be exploited by attackers to cause memory corruption...