CWE:
 

Sorry. No results for Bugtraq WLB2


CVEMAP Search Results

CVE
Details
Description
2021-04-01
Medium
CVE-2021-29936

Vendor: Adtensor project
Software: Adtensor
 

 
An issue was discovered in the adtensor crate through 2021-01-11 for Rust. There is a drop of uninitialized memory via the FromIterator implementation for Vector and Matrix.

 
2021-03-10
Low
CVE-2021-0463

Vendor: Google
Software: Android
 

 
In convertToHidl of convert.cpp, there is a possible out of bounds read due to uninitialized data from ReturnFrameworkMessage. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154867068

 
2021-03-09
Medium
CVE-2021-21190

Vendor: Google
Software: Chrome
 

 
Uninitialized data in PDFium in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file.

 
2021-03-05
Medium
CVE-2021-28030

Vendor: Truetype project
Software: Truetype
 

 
An issue was discovered in the truetype crate before 0.30.1 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation within Tape::take_bytes.

 
2021-02-09
Medium
CVE-2021-26953

Vendor: Postscript project
Software: Postscript
 

 
An issue was discovered in the postscript crate before 0.14.0 for Rust. It might allow attackers to obtain sensitive information from uninitialized memory locations via a user-provided Read implementation.

 
Medium
CVE-2021-26952

Vendor: Ms3d project
Software: MS3D
 

 
An issue was discovered in the ms3d crate before 0.1.3 for Rust. It might allow attackers to obtain sensitive information from uninitialized memory locations via IoReader::read.

 
2021-01-29
Medium
CVE-2021-26305

Vendor: Cdr project
Software: CDR
 

 
An issue was discovered in Deserializer::read_vec in the cdr crate before 0.2.4 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated heap memory, violating soundness.

 
2021-01-26
Medium
CVE-2020-36210

Vendor: Autorand project
Software: Autorand
 

 
An issue was discovered in the autorand crate before 0.2.3 for Rust. Because of impl Random on arrays, uninitialized memory can be dropped when a panic occurs, leading to memory corruption.

 
2021-01-04
Medium
CVE-2020-35494

Vendor: GNU
Software: Binutils
 

 
There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

 
2020-12-31
Medium
CVE-2020-35878

Vendor: Ozone project
Software: Ozone
 

 
An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of the dropping of uninitialized memory.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top