CNNVD-202507-3431 Information
Jul 27, 2025
cve
CNNVD ID
CNNVD-202507-3431
Related CVE
- CNNVD Published: 2025-07-27
Description (Chinese)
transpose crate是Elliott Mahler个人开发者的一个用于转换多维数据的Rust库。 transpose crate 0.2.3之前版本存在输入验证错误漏洞,该漏洞源于input_width和input_height参数可能导致整数溢出。
Description (English)
Transpose Krate is a Rust library used by Elliott Mahler’s personal developer to convert multi-dimensional data. There is an input authentication error gap in the pre-version version of transpose crime 0.2.3, which originated from input width and input head parameters that could result in integer spills.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
个人开发者
Published
2025-07-27
Last Modified
2026-02-24
References
https://crates.io/crates/transpose https://github.com/advisories/GHSA-5gmm-6m36-r7jh https://github.com/ejmahler/transpose/issues/11 https://rustsec.org/advisories/RUSTSEC-2023-0080.html
Patch
https://github.com/ejmahler/transpose/releases
Share on: