Опубликовано: 12 окт. 2021
Источник: github
Github: Прошло ревью
CVSS4: 7.7
CVSS3: 7.5
Описание
Memory corruption when returning a literal struct with a private call inside of it
Impact
When performing a function call inside a literal struct, there is a memory corruption issue that occurs because of an incorrect pointer to the the top of the stack.
Patches
0.3.0 / #2447
Пакеты
Наименование
vyper
pip
Затронутые версииВерсия исправления
< 0.3.0
0.3.0
Связанные уязвимости
CVSS3: 7.5
nvd
больше 4 лет назад
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions when performing a function call inside a literal struct, there is a memory corruption issue that occurs because of an incorrect pointer to the the top of the stack. This issue has been resolved in version 0.3.0.