RUSTSEC-2021-0045

Source
https://rustsec.org/advisories/RUSTSEC-2021-0045
Import Source
https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2021-0045.json
JSON Data
https://api.osv.dev/v1/vulns/RUSTSEC-2021-0045
Aliases
Published
2021-01-11T12:00:00Z
Modified
2023-11-08T04:05:43.880078Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
FromIterator implementation for Vector/Matrix can drop uninitialized memory
Details

The FromIterator<T> methods for Vector and Matrix rely on the type parameter N to allocate space in the iterable.

If the passed in N type parameter is larger than the number of items returned by the iterator, it can lead to uninitialized memory being left in the Vector or Matrix type which gets dropped.

Database specific
{
    "license": "CC0-1.0"
}
References

Affected packages

crates.io / adtensor

Package

Affected ranges

Type
SEMVER
Events
Introduced
0.0.0-0

Ecosystem specific

{
    "affected_functions": null,
    "affects": {
        "os": [],
        "functions": [],
        "arch": []
    }
}

Database specific

{
    "cvss": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
    "informational": null,
    "categories": [
        "memory-corruption"
    ]
}