CVE-2020-35861

Опубликовано: 31 дек. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

An issue was discovered in the bumpalo crate before 3.2.1 for Rust. The realloc feature allows the reading of unknown memory. Attackers can potentially read cryptographic keys.

Релиз	Статус	Примечание
bionic	DNE
devel	not-affected
esm-apps/focal	needs-triage
esm-apps/jammy	not-affected
esm-apps/noble	not-affected
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
groovy	not-affected	3.4.0-1
hirsute	not-affected
impish	not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 51%

0.00285

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2020-35861

CVSS3: 7.5

nvd

около 5 лет назад

An issue was discovered in the bumpalo crate before 3.2.1 for Rust. The realloc feature allows the reading of unknown memory. Attackers can potentially read cryptographic keys.

CVE-2020-35861

CVSS3: 7.5

debian

около 5 лет назад

An issue was discovered in the bumpalo crate before 3.2.1 for Rust. Th ...

GHSA-vqx7-pw4r-29rr

CVSS3: 7.5

github

больше 4 лет назад

Out of bounds read in bumpalo

EPSS

Процентиль: 51%

0.00285

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2020-35861

Описание

Пакет rust-bumpalo

Ссылки на источники

Связанные уязвимости