CVE-2019-15554

Опубликовано: 26 авг. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity.

Ссылки

https://github.com/servo/rust-smallvec/issues/149
Patch
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2019-0012.html
Third Party Advisory
https://github.com/servo/rust-smallvec/issues/149
Patch
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2019-0012.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:servo:smallvec:*:*:*:*:*:*:*:*

Версия от 0.6.3 (включая) до 0.6.10 (исключая)

EPSS

Процентиль: 61%

0.0042

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2019-15554

CVSS3: 9.8

ubuntu

больше 6 лет назад

An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity.

CVE-2019-15554

CVSS3: 9.8

debian

больше 6 лет назад

An issue was discovered in the smallvec crate before 0.6.10 for Rust. ...

GHSA-69gw-hgj3-45m7

CVSS3: 9.8

github

больше 4 лет назад

Memory corruption in smallvec

EPSS

Процентиль: 61%

0.0042

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787