|
194301
|
6.5 |
MEDIUM
Local
|
linux
debian
netapp
|
linux_kernel
debian_linux
cloud_backup
solidfire_baseboard_management_controller_firmware
|
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a resul…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2021-28038
|
2024-11-21 14:59 |
2021-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194302
|
9.8 |
CRITICAL
Network
|
internment_project
|
internment
|
An issue was discovered in the internment crate before 0.4.2 for Rust. There is a data race that can cause memory corruption because of the unconditional implementation of Sync for Intern<T>.
|
NVD-CWE-noinfo
|
CVE-2021-28037
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194303
|
7.5 |
HIGH
Network
|
quinn_project
|
quinn
|
An issue was discovered in the quinn crate before 0.7.0 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::Socket…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-28036
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194304
|
9.8 |
CRITICAL
Network
|
stack_dst_project
|
stack_dst
|
An issue was discovered in the stack_dst crate before 0.6.1 for Rust. Because of the push_inner behavior, a drop of uninitialized memory can occur upon a val.clone() panic.
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-28035
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194305
|
9.8 |
CRITICAL
Network
|
stack_dst_project
|
stack_dst
|
An issue was discovered in the stack_dst crate before 0.6.1 for Rust. Because of the push_inner behavior, a double free can occur upon a val.clone() panic.
|
CWE-415
Double Free
|
CVE-2021-28034
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194306
|
9.8 |
CRITICAL
Network
|
byte_struct_project
|
byte_struct
|
An issue was discovered in the byte_struct crate before 0.6.1 for Rust. There can be a drop of uninitialized memory if a certain deserialization method panics.
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-28033
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194307
|
9.8 |
CRITICAL
Network
|
nano_arena_project
|
nano_arena
|
An issue was discovered in the nano_arena crate before 0.5.2 for Rust. There is an aliasing violation in split_at because two mutable references can exist for the same element, if Borrow<Idx> behaves…
|
NVD-CWE-Other
|
CVE-2021-28032
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194308
|
9.8 |
CRITICAL
Network
|
scratchpad_project
|
scratchpad
|
An issue was discovered in the scratchpad crate before 1.3.1 for Rust. The move_elements function can have a double-free upon a panic in a user-provided f function.
|
CWE-415
Double Free
|
CVE-2021-28031
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194309
|
7.5 |
HIGH
Network
|
truetype_project
|
truetype
|
An issue was discovered in the truetype crate before 0.30.1 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation within Tape::take_bytes.
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-28030
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194310
|
7.5 |
HIGH
Network
|
toodee_project
|
toodee
|
An issue was discovered in the toodee crate before 0.3.0 for Rust. The row-insertion feature allows attackers to read the contents of uninitialized memory locations.
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-28029
|
2024-11-21 14:59 |
2021-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
