CVE-2021-45706

An issue was discovered in the zeroize_derive crate before 1.1.1 for Rust. Dropped memory is not zeroed out for an enum.
Configurations

Configuration 1 (hide)

cpe:2.3:a:zeroize_derive_project:zeroize_derive:*:*:*:*:*:rust:*:*

History

22 Jun 2022, 17:03

Type Values Removed Values Added
CWE NVD-CWE-noinfo CWE-459

06 Jan 2022, 19:07

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : 7.5
v3 : 9.8
References (MISC) https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/zeroize_derive/RUSTSEC-2021-0115.md - (MISC) https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/zeroize_derive/RUSTSEC-2021-0115.md - Third Party Advisory
References (MISC) https://rustsec.org/advisories/RUSTSEC-2021-0115.html - (MISC) https://rustsec.org/advisories/RUSTSEC-2021-0115.html - Third Party Advisory
First Time Zeroize Derive Project zeroize Derive
Zeroize Derive Project
CPE cpe:2.3:a:zeroize_derive_project:zeroize_derive:*:*:*:*:*:rust:*:*
CWE NVD-CWE-noinfo

27 Dec 2021, 00:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-12-27 00:15

Updated : 2022-06-22 17:03


NVD link : CVE-2021-45706

Mitre link : CVE-2021-45706


JSON object : View

Products Affected

zeroize_derive_project

  • zeroize_derive
CWE
CWE-459

Incomplete Cleanup