CVE-2021-26951

Posted on 2021년 2월 10일2021년 2월 10일 by admin

CVE-2021-26951

An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::set_len is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get.

Source: CVE-2021-26951

답글 남기기 응답 취소