PT-2018-15491 · Rust+1 · Rust+1
Publicado
2018-12-18
·
Atualizado
2021-08-25
·
CVE-2018-20998
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
arrayfire versions prior to 3.6.0
Description
The issue is related to the addition of the
repr() attribute to an enum, which is mishandled and leads to memory corruption. This problem occurs when using the MSVC toolchain and is interlinked with the version of Rust being used. The issue started to appear since Rust version 1.28.Recommendations
For arrayfire versions prior to 3.6.0, update to version 3.6.0 to resolve the issue. As a temporary workaround, consider using Rust versions 1.27 or earlier with arrayfire crates version 3.5.0 or earlier.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Rust
Arrayfire