VYPR

crates.io package

cdr

pkg:cargo/cdr

Vulnerabilities (1)

  • CVE-2021-26305Jan 29, 2021
    affected < 0.2.4fixed 0.2.4

    An issue was discovered in Deserializer::read_vec in the cdr crate before 0.2.4 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated heap memory, violating soundness.