OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-06 11:39:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Remove comments and fix spelling

Browse Source
This commit is contained in:
Heinz N. Gies
2019-06-24 21:11:48 +02:00
parent f65960fb51
commit 8134840ade
1 changed files with 4 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
crates/simd-json/RUSTSEC-0000-0000.toml
View File

@@ -3,17 +3,15 @@ id = "RUSTSEC-0000-0000"
package = "simd-json"
# Disclosure date of the advisory as an RFC 3339 date (mandatory)
date = "2019-06-24"
title = "Flaw in string parsing can lead to crashes due to invalid memory access."
# Enter a short-form description of the vulnerability here (mandatory)
description = """
The affected version of this crate did not guard against accessing memory
beyond the range of it's input data. A pointer cast to read the data into
a 256 bit register could lead to a sengmentation fault when the end plus
the 32 byte (256 bit) read would overlap into the next page during string
beyond the range of its input data. A pointer cast to read the data into
a 256-bit register could lead to a segmentation fault when the end plus
the 32 bytes (256 bit) read would overlap into the next page during string
parsing.
```
@@ -25,7 +23,7 @@ segflt | [ 32 | byte ] |
This allows an attacker to eventually crash a service.
The flaw was corrected by using a padding buffer for the last read form the
The flaw was corrected by using a padding buffer for the last read from the
input. So that we are we never read over the boundary of the input data.
"""