OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-05 19:20:34 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
3c8a9dc31d7ea1dc49d6851aa8a1dfe531ea06bd
advisory-db/crates/openssl/RUSTSEC-2018-0010.md
Alexis Mousset 8c05fea5fa Add cvss information from nvd (#1085)
2021-10-19 16:14:35 -06:00

438 B
Raw Blame History 

[advisory]
id = "RUSTSEC-2018-0010"
package = "openssl"
aliases = ["CVE-2018-20997"]
cvss = "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
date = "2018-06-01"
keywords = ["memory-corruption"]
url = "https://github.com/sfackler/rust-openssl/pull/942"

[versions]
patched = [">= 0.10.9"]
unaffected = ["< 0.10.8"]

Use after free in CMS Signing

Affected versions of the OpenSSL crate used structures after they'd been freed.