MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5ZnYtZ3c2Zy04Y2Nn

Critical CVSS: 9.3 EPSS: 0.00433% (0.61547 Percentile) EPSS:

Permalink JSON

Potential memory corruption in arrayfire

Affected Packages	Affected Versions	Fixed Versions
pypi:arrayfire	< 3.6.0	3.6.0
5 Dependent packages 13 Dependent repositories 3,235 Downloads last month Affected Version Ranges All affected versions 3.0.20150914, 3.1.20151111, 3.2.20151211, 3.2.20151214, 3.2.20151224, 3.3.20160320, 3.3.20160328, 3.3.20160427, 3.3.20160510, 3.3.20160516, 3.3.20160624, 3.4.20160925, 3.4.20161126, 3.4.20170222, 3.5.20170718, 3.5.20170721, 3.5.20170817 All unaffected versions 3.6.0, 3.6.20181017, 3.8.0
cargo:arrayfire	< 3.6.0	3.6.0
17 Dependent packages 10 Dependent repositories 104,444 Downloads total Affected Version Ranges All affected versions 3.2.0, 3.3.0, 3.3.1, 3.3.2, 3.4.0, 3.4.1, 3.4.2, 3.4.3, 3.5.0 All unaffected versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0, 3.7.1, 3.7.2, 3.8.0

The attribute repr() added to enums to be compatible with C-FFI caused memory corruption on MSVC toolchain.

arrayfire crates <= version 3.5.0 do not have this issue when used with Rust versions 1.27 or earlier. The issue only started to appear since Rust version 1.28.

The issue seems to be interlinked with which version of Rust is being used.

The issue was fixed in crate 3.6.0.

References:

Identifiers

GHSA-69fv-gw6g-8ccg

CVE-2018-20998

Risk

Severity

Critical

CVSS

CVSS Score: 9.3

CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS

EPSS Percentage: 0.00433

EPSS Percentile: 0.61547

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/arrayfire/arrayfire-rust

Date and time

Published

almost 4 years ago

Updated

11 months ago

API

JSON

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories