Описание
Overflow in prost-types
Affected versions of this crate contained a bug in which untrusted input could cause an overflow and panic when converting a Timestamp to SystemTime. It is recommended to upgrade to prost-types v0.8 and switch the usage of From for SystemTime to TryFrom for SystemTime.
Пакеты
Наименование
prost-types
rust
Затронутые версииВерсия исправления
< 0.8.0
0.8.0
Связанные уязвимости
CVSS3: 7.5
nvd
больше 4 лет назад
An issue was discovered in the prost-types crate before 0.8.0 for Rust. An overflow can occur during conversion from Timestamp to SystemTime.