OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-23 15:38:27 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
9b360973e23ad954b744cb1d229f83faa2db3c74
advisory-db/crates/rand_core/RUSTSEC-2019-0035.toml

22 lines
643 B
TOML
Raw Blame History

[advisory]
id = "RUSTSEC-2019-0035"
aliases = ["GHSA-mmc9-pwm7-qj5w", "CVE-2020-25576"]
package = "rand_core"
date = "2019-04-19"
informational = "unsound"
title = "Unaligned memory access"
description = """
Affected versions of this crate violated alignment when casting byte slices to
integer slices, resulting in undefined behavior.
The flaw was corrected by Ralf Jung and Diggory Hardy.
"""
url = "https://github.com/rust-random/rand/blob/master/rand_core/CHANGELOG.md#050---2019-06-06"
[affected.functions]
"rand_core::BlockRng::next_u64" = ["< 0.4.2"]
"rand_core::BlockRng::fill_bytes" = ["< 0.4.2"]
[versions]
patched = [">= 0.4.2"]
Reference in New Issue View Git Blame Copy Permalink