mirror of
https://github.com/OMGeeky/advisory-db.git
synced 2026-01-07 04:01:35 +01:00
39 lines
1.1 KiB
TOML
39 lines
1.1 KiB
TOML
[advisory]
|
|
id = "RUSTSEC-2019-0008"
|
|
|
|
package = "simd-json"
|
|
|
|
date = "2019-06-24"
|
|
|
|
title = "Flaw in string parsing can lead to crashes due to invalid memory access."
|
|
|
|
description = """
|
|
The affected version of this crate did not guard against accessing memory
|
|
beyond the range of its input data. A pointer cast to read the data into
|
|
a 256-bit register could lead to a segmentation fault when the end plus
|
|
the 32 bytes (256 bit) read would overlap into the next page during string
|
|
parsing.
|
|
|
|
```
|
|
page | ... page 1 ... | ... page 2 ... |
|
|
data | x[n * 32 byte]xx__ | |
|
|
access | ..][ 32 byte ] | |
|
|
segflt | [ 32 | byte ] |
|
|
```
|
|
|
|
This allows an attacker to eventually crash a service.
|
|
|
|
The flaw was corrected by using a padding buffer for the last read from the
|
|
input. So that we are we never read over the boundary of the input data.
|
|
"""
|
|
|
|
patched_versions = [">= 0.1.15"]
|
|
|
|
unaffected_versions = ["<= 0.1.13"]
|
|
|
|
url = "https://github.com/Licenser/simdjson-rs/pull/27"
|
|
|
|
keywords = ["simd"]
|
|
|
|
affected_arch = ["x86", "x86_64"]
|