CVE-2020-36205

Опубликовано: 26 янв. 2021

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

An issue was discovered in the xcb crate through 2020-12-10 for Rust. base::Error does not have soundness. Because of the public ptr field, a use-after-free or double-free can occur.

Ссылки

https://rustsec.org/advisories/RUSTSEC-2020-0097.html
Exploit
Vendor Advisory
https://rustsec.org/advisories/RUSTSEC-2020-0097.html
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:xcb_project:xcb:*:*:*:*:*:rust:*:*

Версия до 2020-12-10 (включая)

EPSS

Процентиль: 19%

0.00059

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-415

Связанные уязвимости

CVE-2020-36205

CVSS3: 5.5

ubuntu

около 5 лет назад

An issue was discovered in the xcb crate through 2020-12-10 for Rust. base::Error does not have soundness. Because of the public ptr field, a use-after-free or double-free can occur.

CVE-2020-36205

CVSS3: 5.5

debian

около 5 лет назад

An issue was discovered in the xcb crate through 2020-12-10 for Rust. ...

GHSA-c8hq-x4mm-p6q6

CVSS3: 5.5

github

больше 4 лет назад

Memory handling issues in xcb

EPSS

Процентиль: 19%

0.00059

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-415