CVE-2020-25016
N/A
N/A
Summary
A safety violation was discovered in the rgb crate before 0.8.20 for Rust, leading to (for example) dereferencing of arbitrary pointers or disclosure of uninitialized memory. This occurs because structs can be treated as bytes for read and write operations.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://rustsec.org/advisories/RUSTSEC-2020-0029.html
- https://github.com/kornelski/rust-rgb/issues/35
References
- https://rustsec.org/advisories/RUSTSEC-2020-0029.html
- https://github.com/kornelski/rust-rgb/issues/35
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.