4 matches found
CVE-2021-45690
CVE-2021-45690 affects the Rust crate messagepack-rs. The issue is in deserialization: deserialize_binary (and related paths) may read from uninitialized memory locations, leading to potential undefined behavior in safe Read implementations. Documented targets include deserialize_binary, deserial...
CVE-2021-45691
CVE-2021-45691 affects the Rust crate messagepack-rs (through 2021-01-26). The issue is that deserialize_string may read from uninitialized memory locations, leading to potentially unsafe reads. According to NVD, the vulnerability has a CVSS v3.1 base score of 9.8 (CRITICAL) with network attack v...
CVE-2021-45693
The CVE-2021-45693 entry concerns the Rust crate messagepack-rs (through 2021-01-26). The vulnerability affects the deserialize_string_primitive function, which may read from uninitialized memory locations, potentially leading to memory corruption. Public references include Red Hat and OSV entrie...
CVE-2021-45692
The CVE-2021-45692 issue affects the Rust crate messagepack-rs. Affected component: deserialize_extension_others (and related paths like deserialize_binary, deserialize_string, deserialize_string_primitive) may read from uninitialized memory locations, potentially causing undefined behavior or me...