Описание
The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| rust-buffered-reader | fixed | 1.2.0-1 | package | |
| rust-buffered-reader | no-dsa | bookworm | package | |
| rust-buffered-reader | no-dsa | bullseye | package |
Примечания
https://rustsec.org/advisories/RUSTSEC-2023-0039.html
https://lists.sequoia-pgp.org/hyperkitty/list/announce@lists.sequoia-pgp.org/thread/SN2E3QRT4DMQ5JNEK6VIN6DJ5SH766DI/
https://gitlab.com/sequoia-pgp/sequoia/-/commit/f6307652fb2cbf4e0fbd3f897b1ec70863fcfa61
EPSS
Процентиль: 8%
0.00035
Низкий
Связанные уязвимости
CVSS3: 2.9
ubuntu
23 дня назад
The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic.
CVSS3: 3.3
redhat
23 дня назад
The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic.
CVSS3: 2.9
nvd
23 дня назад
The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic.
CVSS3: 2.9
github
около 2 лет назад
buffered-reader vulnerable to out-of-bounds array access leading to panic
EPSS
Процентиль: 8%
0.00035
Низкий