Описание
Deserializing an array can free uninitialized memory in byte_struct
Byte_struct stack and unpack structure as raw bytes with packed or bit field layout. An issue was discovered in the byte_struct crate before 0.6.1 for Rust. There can be a drop of uninitialized memory if a certain deserialization method panics.
Пакеты
Наименование
byte_struct
rust
Затронутые версииВерсия исправления
< 0.6.1
0.6.1
Связанные уязвимости
CVSS3: 9.8
nvd
почти 5 лет назад
An issue was discovered in the byte_struct crate before 0.6.1 for Rust. There can be a drop of uninitialized memory if a certain deserialization method panics.