CVE-2020-25792

Опубликовано: 19 сент. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with pair().

Ссылки

https://github.com/bodil/sized-chunks/commit/3ae48bd463c1af41c24b96b84079946f51f51e3c
https://github.com/bodil/sized-chunks/issues/11
Exploit
Patch
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2020-0041.html
Third Party Advisory
https://github.com/bodil/sized-chunks/commit/3ae48bd463c1af41c24b96b84079946f51f51e3c
https://github.com/bodil/sized-chunks/issues/11
Exploit
Patch
Third Party Advisory
https://rustsec.org/advisories/RUSTSEC-2020-0041.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sized-chunks_project:sized-chunks:*:*:*:*:*:rust:*:*

Версия до 0.6.2 (включая)

EPSS

Процентиль: 61%

0.00406

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-129

Связанные уязвимости

CVE-2020-25792

CVSS3: 7.5

ubuntu

больше 5 лет назад

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with pair().

CVE-2020-25792

CVSS3: 7.5

msrc

больше 5 лет назад

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with pair().

CVE-2020-25792

CVSS3: 7.5

debian

больше 5 лет назад

An issue was discovered in the sized-chunks crate through 0.6.2 for Ru ...

GHSA-mp6f-p9gp-vpj9

CVSS3: 7.5

github

больше 4 лет назад

Array size is not checked in sized-chunks

EPSS

Процентиль: 61%

0.00406

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-129