Critical severityNVD Advisory· Published Aug 29, 2020· Updated Aug 4, 2024
CVE-2020-25016
CVE-2020-25016
Description
A safety violation was discovered in the rgb crate before 0.8.20 for Rust, leading to (for example) dereferencing of arbitrary pointers or disclosure of uninitialized memory. This occurs because structs can be treated as bytes for read and write operations.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
rgbcrates.io | >= 0.5.4, < 0.8.20 | 0.8.20 |
Affected products
2- Rust/rgb cratedescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-g4rw-8m5q-6453ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-25016ghsaADVISORY
- github.com/kornelski/rust-rgb/issues/35ghsax_refsource_MISCWEB
- rustsec.org/advisories/RUSTSEC-2020-0029.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.