CVE-2021-27377

Name of the Vulnerable Software and Affected Versions yottadb crate versions prior to 1.2.0

Description An issue was discovered in the yottadb crate where ydb subscript next st and ydb subscript prev st have a use-after-free for some memory-allocation patterns. This occurs when the variable and subscripts do not have enough memory allocated on the first call to hold the next variable in the database, potentially passing a pointer to freed memory. The issue was corrected by recalculating the pointer each time it was reallocated.

Recommendations For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue. As a temporary workaround, consider avoiding the use of ydb subscript next st and ydb subscript prev st functions until the update is applied. Additionally, ensure that sufficient memory is allocated for variables and subscripts to prevent the use-after-free condition.