OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-13 21:18:11 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
57c8f476a1b39b8e35b0cca9c23df59df82f8913
advisory-db/crates/rocksdb/RUSTSEC-2022-0046.md
github-actions[bot] db3a09a691 Assigned RUSTSEC-2022-0046 to rocksdb (#1344) 
Co-authored-by: amousset <amousset@users.noreply.github.com>
2022-08-11 15:30:57 +02:00

787 B
Raw Blame History 

[advisory]
id = "RUSTSEC-2022-0046"
package = "rocksdb"
date = "2022-05-11"
url = "https://github.com/rust-rocksdb/rust-rocksdb/pull/616"
categories = ["memory-corruption"]
keywords = ["out-of-bounds read"]

[versions]
patched = [">= 0.19.0"]

[affected]
functions = { "rocksdb::DBWithThreadMode::open_cf_descriptors_with_ttl" = ["< 0.19.0"] }

Out-of-bounds read when opening multiple column families with TTL

Affected versions of this crate called the RocksDB C API rocksdb_open_column_families_with_ttl() with a pointer to a single integer TTL value, but one TTL value for each column family is expected.

This is only relevant when using rocksdb::DBWithThreadMode::open_cf_descriptors_with_ttl() with multiple column families.

This bug has been fixed in v0.19.0.