In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer overflow when a consumed Zip iterator is used again.
References
Configurations
History
07 Nov 2023, 03:32
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
03 Nov 2022, 19:28
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/202210-09 - Third Party Advisory |
16 Oct 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
27 Apr 2021, 13:40
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TFUO3URYCO73D2Q4WYJBWAMJWGGVXQO4/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZG65GUW6Z2CYOQHF7T3TB5CZKIX6ZJE/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CZ337CM4GFJLRDFVQCGC7J25V65JXOG5/ - Mailing List, Third Party Advisory |
27 Apr 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
24 Apr 2021, 23:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Apr 2021, 13:52
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:a:rust-lang:rust:*:*:*:*:*:*:*:* | |
CWE | CWE-190 | |
References | (MISC) https://github.com/rust-lang/rust/issues/82282 - Exploit, Issue Tracking, Third Party Advisory | |
References | (MISC) https://github.com/rust-lang/rust/pull/82289 - Patch, Third Party Advisory |
11 Apr 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-11 20:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-28879
Mitre link : CVE-2021-28879
CVE.ORG link : CVE-2021-28879
JSON object : View
Products Affected
fedoraproject
- fedora
rust-lang
- rust
CWE
CWE-190
Integer Overflow or Wraparound