Critical severityNVD Advisory· Published Dec 31, 2020· Updated Aug 5, 2024
CVE-2019-25004
CVE-2019-25004
Description
An issue was discovered in the flatbuffers crate before 0.6.1 for Rust. Arbitrary bytes can be reinterpreted as a bool, defeating soundness.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
flatbufferscrates.io | >= 0.4.0, < 0.6.1 | 0.6.1 |
Affected products
2- rust/flatbuffersdescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-gx73-2498-r55cghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-25004ghsaADVISORY
- github.com/google/flatbuffers/issues/5530ghsaWEB
- rustsec.org/advisories/RUSTSEC-2019-0028.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.