Описание
An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because transmutation to the wrong type can happen after xcb::base::cast_event uses std::mem::transmute to return a reference to an arbitrary type.
Ссылки
- ExploitVendor Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2021-02-04 (включая)
cpe:2.3:a:xcb_project:xcb:*:*:*:*:*:rust:*:*
EPSS
Процентиль: 68%
0.00568
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-252
Связанные уязвимости
CVSS3: 8.8
ubuntu
почти 5 лет назад
An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because transmutation to the wrong type can happen after xcb::base::cast_event uses std::mem::transmute to return a reference to an arbitrary type.
CVSS3: 8.8
debian
почти 5 лет назад
An issue was discovered in the xcb crate through 2021-02-04 for Rust. ...
EPSS
Процентиль: 68%
0.00568
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-252