CVE-2021-45694 – rdiff

Package

Manager: cargo
Name: rdiff
Vulnerable Version: >=0 <=0.1.2

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00285 pctl0.51485

Details

Window may read from uninitialized memory locations in rdiff An issue was discovered in the rdiff crate through version 0.1.2 for Rust. Window may read from uninitialized memory locations.

Metadata

Created: 2022-01-06T22:14:13Z
Modified: 2023-06-13T20:24:32Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/01/GHSA-2rxc-8f9w-fjq8/GHSA-2rxc-8f9w-fjq8.json
CWE IDs: ["CWE-908"]
Alternative ID: GHSA-2rxc-8f9w-fjq8
Finding: F138
Auto approve: 1