logo

Database

Lack of data validation In rust-zserio

Description

rust-zserio has Unbounded Memory Allocation

Impact

When deserializing arrays, strings or bytes (blob) types zserio first reads the size of the variable, and then allocates sufficient memory to load data. Since the size is always trusted this can be abused by creating a data file with a large size value, causing the zserio runtime to allocate large amounts of memory.

Patches

Please cherry-pick 57f5fb.

Workarounds

    Do not accept zserio-encoded messages from non-trusted sources.

    Allocate a maximum heap amount to rust-zerio to avoid impacting other applications.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. GHSA-fpf5-4jw8-67x82. GHSA-cwq5-8pvq-j65j3. GCVE-GHSA-fpf5-4jw8-67x8

References

1. https://github.com/Danaozhong/rust-zserio/security/advisories/GHSA-fpf5-4jw8-67x82. https://github.com/ndsev/zserio/security/advisories/GHSA-cwq5-8pvq-j65j3. https://github.com/Danaozhong/rust-zserio/commit/57f5fb4a2a8611d58dbcc1a9221349206dd99c3c

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.