GHSA-r6ff-2q3c-v3pv

Suggest an improvement
Source
https://github.com/advisories/GHSA-r6ff-2q3c-v3pv
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/08/GHSA-r6ff-2q3c-v3pv/GHSA-r6ff-2q3c-v3pv.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-r6ff-2q3c-v3pv
Aliases
Published
2021-08-25T21:00:01Z
Modified
2023-11-08T04:01:32.674538Z
Severity
  • 6.0 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H CVSS Calculator
Summary
Compiler optimisation leads to SEGFAULT
Details

Affected versions of the pnet crate were optimized out by compiler, which caused dereference of uninitialized file descriptor which caused segfault.

Database specific 
{
    "nvd_published_at": null,
    "cwe_ids": [
        "CWE-908"
    ],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2021-08-09T17:13:06Z"
}
References

Affected packages

crates.io / pnet

Package

Name
pnet
View open source insights on deps.dev
Purl
pkg:cargo/pnet

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.27.2

Ecosystem specific 

{
    "affected_functions": [
        "pnet::transport::IcmpTransportChannelIterator"
    ]
}