| عنوان | ouch-org ouch 0.3.1 Memory Corruption |
|---|
| الوصف | When trying to decompress a file using "ouch", we can reach the function "ouch::archive::zip::convert_zip_date_time".
In the function, there is a unsafe function, "transmute". Once the "transmute" function is called to convert the type of "month" object,
the address of the object is changed to the uninitialized memory region.
After that, when other function tries to dereference "month", segmentation fault occurs.
github issue link : ( https://github.com/ouch-org/ouch/issues/707 ) |
|---|
| المصدر | ⚠️ https://github.com/rustsec/advisory-db/pull/2084/files |
|---|
| المستخدم | yewan (UID 82633) |
|---|
| ارسال | 21/03/2025 05:42 AM (1 سنة منذ) |
|---|
| الاعتدال | 30/03/2025 07:59 PM (10 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 302055 [ouch-org ouch حتى 0.3.1 zip.rs convert_zip_date_time شهر تلف الذاكرة] |
|---|
| النقاط | 20 |
|---|