Critical severityNVD Advisory· Published Mar 5, 2021· Updated Aug 3, 2024
CVE-2021-28033
CVE-2021-28033
Description
An issue was discovered in the byte_struct crate before 0.6.1 for Rust. There can be a drop of uninitialized memory if a certain deserialization method panics.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
byte_structcrates.io | < 0.6.1 | 0.6.1 |
Affected products
2- Rust/byte_structdescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-8fgg-5v78-6g76ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-28033ghsaADVISORY
- github.com/wwylele/byte-struct-rs/commit/a535678377de12bc6bc22620c5f59bcc1369f76fghsaWEB
- github.com/wwylele/byte-struct-rs/issues/1ghsaWEB
- rustsec.org/advisories/RUSTSEC-2021-0032.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.