OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-26 16:07:48 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update example advisory text (#513)

Browse Source
This commit is contained in:
Yechan Bae
2020-12-07 10:31:37 -05:00
committed by GitHub
parent dec05d79ab
commit a24932e220
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
EXAMPLE_ADVISORY.md
View File

@@ -34,8 +34,8 @@ of the vulnerability, will be converted into HTML and rendered at
A well structured advisory will include information like:
Affected versions of this crate did not properly X.
Affected versions of this crate did not properly check for integer overflow when allocating a buffer in `MyBuffer::with_capacity()` (bug description/location/root cause).
This allows an attacker to Y.
The flaw was corrected by Z.
This can result in a memory corruption (consequence of the bug) when large integer is given to the parameter (trigger condition).
The flaw was corrected in commit abc123 by using `saturating_mul()` when calculating the buffer size (fix description).