Количество 2
Количество 2
CVE-2021-43620
An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::from_ptr on a pointer to the string buffer, the string is terminated at the first '\0' byte, which might not be the end of the string.
GHSA-h352-g5vw-3926
Improper Input Validation in fruity
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-43620 An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::from_ptr on a pointer to the string buffer, the string is terminated at the first '\0' byte, which might not be the end of the string. | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
| GHSA-h352-g5vw-3926 Improper Input Validation in fruity | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
Уязвимостей на страницу