Описание
Use after free in portaudio-rs
Affected versions of this crate is not panic safe within callback functions stream_callback and stream_finished_callback. The call to user-provided closure might panic before a mem::forget call, which then causes a use after free that grants attacker to control the callback function pointer. This allows an attacker to construct an arbitrary code execution .
Пакеты
Наименование
portaudio-rs
rust
Затронутые версииВерсия исправления
< 0.3.2
0.3.2
Связанные уязвимости
CVSS3: 9.8
nvd
больше 6 лет назад
An issue was discovered in the portaudio-rs crate through 0.3.1 for Rust. There is a use-after-free with resultant arbitrary code execution because of a lack of unwind safety in stream_callback and stream_finished_callback.