OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-06 11:39:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Advisory for unsound pinning in actix-http

Browse Source
This commit is contained in:
Sergey "Shnatsel" Davidoff
2020-09-26 19:35:10 +02:00
committed by GitHub
parent ad014c6034
commit 6f59b11780
1 changed files with 19 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
crates/actix-http/RUSTSEC-0000-0000.toml Normal file
View File

@@ -0,0 +1,19 @@
[advisory]
id = "RUSTSEC-0000-0000"
package = "actix-http"
date = "2019-01-24"
title = "Use-after-free in BodyStream due to lack of pinning"
url = "https://github.com/actix/actix-web/issues/1321"
categories = ["memory-corruption"]
description = """
Affected versions of this crate did not require the buffer wrapped in `BodyStream` to be pinned,
but treated it as if it had a fixed location in memory. This may result in a use-after-free.
The flaw was corrected by making the trait `MessageBody` require `Unpin`
and making `poll_next()` function accept `Pin<&mut Self>` instead of `&mut self`.
"""
# Versions which include fixes for this vulnerability (mandatory)
[versions]
patched = [">= 2.0.0-alpha.1"]