Moderate severityNVD Advisory· Published Dec 31, 2020· Updated Aug 4, 2024
CVE-2020-35926
CVE-2020-35926
Description
An issue was discovered in the nanorand crate before 0.5.1 for Rust. It caused any random number generator (even ChaCha) to return all zeroes because integer truncation was mishandled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nanorandcrates.io | < 0.5.1 | 0.5.1 |
Affected products
2- Rust/nanoranddescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-m9m5-cg5h-r582ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-35926ghsaADVISORY
- github.com/Absolucy/nanorand-rs/commit/5ba218ac29df4786b002d7d12b47fa0c04a331f2ghsaWEB
- rustsec.org/advisories/RUSTSEC-2020-0089.htmlghsax_refsource_MISCWEB
- twitter.com/aspenluxxxy/status/1336684692284772352ghsaWEB
News mentions
0No linked articles in our index yet.