PT-2020-17510 · Rust · Ozone Crate

Published

2020-07-04

Updated

2021-08-25

CVE-2020-35878

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ozone crate versions through 0.1.0

Description An issue was discovered in the ozone crate for Rust, where memory safety is violated. This is due to the dropping of uninitialized memory and out-of-bounds access.

Recommendations For versions through 0.1.0, update to a version that contains a fix for this issue to prevent memory safety violations.

Fix

Buffer Overflow

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-908

Related Identifiers

CVE-2020-35878

GHSA-M3WW-7HRP-GW9W

GHSA-P2Q9-9CQ6-H3JW

RUSTSEC-2020-0022

Affected Products

Ozone Crate

PT-2020-17510 · Rust · Ozone Crate

CVE-2020-35878

Weakness Enumeration

Related Identifiers

Affected Products

References · 10