mirror of
https://github.com/OMGeeky/advisory-db.git
synced 2026-02-15 22:04:38 +01:00
21 lines
732 B
Markdown
21 lines
732 B
Markdown
```toml
|
|
[advisory]
|
|
id = "RUSTSEC-2019-0038"
|
|
package = "libpulse-binding"
|
|
date = "2019-03-10"
|
|
url = "https://github.com/jnqnfe/pulse-binding-rust/commit/7fd282aef7787577c385aed88cb25d004b85f494"
|
|
categories = ["memory-corruption"]
|
|
informational = "unsound"
|
|
aliases = ["CVE-2019-25055", "GHSA-wcxc-jf6c-8rx9", "GHSA-xvcg-2q82-r87j"]
|
|
|
|
[versions]
|
|
patched = [">= 2.6.0"]
|
|
```
|
|
|
|
# Fix for UB in failure to catch panics crossing FFI boundaries
|
|
|
|
Affected versions of this crate failed to catch panics crossing FFI boundaries via callbacks, which
|
|
is a form of UB. This flaw was corrected by [this commit][1] which was included in version 2.6.0.
|
|
|
|
[1]: https://github.com/jnqnfe/pulse-binding-rust/commit/7fd282aef7787577c385aed88cb25d004b85f494
|