Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS0ycnhjLThmOXctZmpxOM0fng
Window may read from uninitialized memory locations in rdiff
An issue was discovered in the rdiff crate through version 0.1.2 for Rust. Window may read from uninitialized memory locations.
Permalink: https://github.com/advisories/GHSA-2rxc-8f9w-fjq8JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0ycnhjLThmOXctZmpxOM0fng
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: over 2 years ago
Updated: 11 months ago
CVSS Score: 7.5
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Identifiers: GHSA-2rxc-8f9w-fjq8, CVE-2021-45694
References:
- https://nvd.nist.gov/vuln/detail/CVE-2021-45694
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/rdiff/RUSTSEC-2021-0094.md
- https://rustsec.org/advisories/RUSTSEC-2021-0094.html
- https://github.com/dyule/rdiff/issues/3
- https://github.com/advisories/GHSA-2rxc-8f9w-fjq8
Blast Radius: 0.0
Affected Packages
cargo:rdiff
Dependent packages: 1Dependent repositories: 1
Downloads: 3,545 total
Affected Version Ranges: <= 0.1.2
No known fixed version
All affected versions: 0.1.0, 0.1.1, 0.1.2