Lucene search
Veracode Vulnerability DatabaseVERACODE:32444HistoryOct 11, 2021 - 2:02 a.m.
Denial Of Service (DoS)
2021-10-1102:02:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
rustc
sid
denial of service
string::retain()
panic safety
non-utf-8
memory safety
EPSS
0.002
Percentile
52.4%
rustc:sid is vulnerable to denial of service. The String::retain() function has a panic safety problem. It allows creation of a non-UTF-8 Rust string when the provided closure panics. This bug could result in a memory safety violation when other string APIs assume that UTF-8 encoding is used on the same string.
Related
cbl_mariner
cbl_mariner
CVE-2020-36317 affecting package rust 1.47.0-3
2021-05-06 23:58:25
redhatcve
redhatcve
CVE-2020-36317
2021-04-13 17:34:06
prion
prion
Design/Logic Flaw
2021-04-11 20:15:00
nvd
nvd
CVE-2020-36317
2021-04-11 20:15:12
cvelist
cvelist
CVE-2020-36317
2021-04-11 19:06:28
debiancve
debiancve
CVE-2020-36317
2021-04-11 20:15:12
ubuntucve
ubuntucve
CVE-2020-36317
2021-04-11 00:00:00
alpinelinux
alpinelinux
CVE-2020-36317
2021-04-11 20:15:00
osv
osv
CVE-2020-36317
2021-04-11 20:15:12
Low: rust-toolset:rhel8 security, bug fix, and enhancement update
2021-05-18 06:26:06
cve
cve
CVE-2020-36317
2021-04-11 20:15:12
oraclelinux
oraclelinux
rust-toolset:ol8 security, bug fix, and enhancement update
2021-05-25 00:00:00
redhat
redhat
nessus
nessus
RHEL 7 : rust-toolset-1.49 and rust-toolset-1.49-rust update (Low) (RHSA-2021:2243)
2022-09-15 00:00:00
Oracle Linux 8 : rust-toolset:ol8 (ELSA-2021-1935)
2021-05-26 00:00:00
Rocky Linux 8 : rust-toolset:rhel8 (RLSA-2021:1935)
2023-11-07 00:00:00
almalinux
almalinux
Low: rust-toolset:rhel8 security, bug fix, and enhancement update
2021-05-18 06:26:06
rocky
rocky
rust-toolset:rhel8 security, bug fix, and enhancement update
2021-05-18 06:26:06