added specific affected functions to CVE-2021-29922 (#975)

Co-authored-by: Tony Arcieri <bascule@gmail.com>
2025-12-27 06:29:31 +01:00 · 2021-08-09 14:15:56 +02:00
parent ce76490feb
commit 541c537a23
1 changed files with 4 additions and 1 deletions
--- a/rust/std/CVE-2021-29922.md
+++ b/rust/std/CVE-2021-29922.md
@@ -10,7 +10,10 @@ keywords = ["IpAddr", "SSRF", "RFI", "LFI"]
 patched = [">= 1.53.0"]

 [affected]
-functions = { "std::net" = ["<= 1.52.1"] }
+[affected.functions]
+"std::net::IpAddr::from_str" = ["<= 1.52.1"]
+"std::net::Ipv4Addr::from_str" = ["<= 1.52.1"]
+"std::net::Ipv6Addr::from_str" = ["<= 1.52.1"]
 ```

 # Improper Input Validation of octal literals in `std::net`