RSS   Vulnerabilities for 'Truetype'   RSS

2021-03-05
 
CVE-2021-28030

CWE-908
 

 
An issue was discovered in the truetype crate before 0.30.1 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation within Tape::take_bytes.

 


Copyright 2024, cxsecurity.com

 

Back to Top