PT-2018-15482 · Rust · Untrusted
Published
2018-06-21
·
Updated
2021-08-25
·
CVE-2018-20989
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
untrusted versions prior to 0.6.2
Description
An issue in error handling can trigger an integer underflow and panic. This occurs when a user of the crate does not properly check for errors returned by untrusted, potentially leading to a denial of service of affected software.
Recommendations
For versions prior to 0.6.2, update to version 0.6.2 or later to resolve the issue.
As a temporary workaround, consider checking for errors returned by untrusted to minimize the risk of exploitation.
Fix
Integer Underflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Untrusted