3 matches found
obfstr Type Confusion vulnerability
In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...
The bzip2 crate before 0.4.4 for Rust allow attackers to cause a denial of service via a large file that triggers an integer overflow in mem.rs. NOTE: this is unrelated to the https://crates.io/crates/bzip2-rs product.
...
Crossbeam Buffer Overflow Vulnerability
Crossbeam is a tool for individual developers applied to concurrent programming. A buffer overflow vulnerability exists in Crossbeam crossbeam-channel versions prior to 0.4.4, which stems from an inconsistency between the Vec::from iter allocated memory and the number of iterators. An attacker ca...