CNNVD-202507-3441 Information
CNNVD ID
CNNVD-202507-3441
Related CVE
- CNNVD Published: 2025-07-28
Description (Chinese)
buffered-reader crate是sequoia个人开发者的一个Rust的输入流读取库。 buffered-reader crate 1.1.5之前版本存在缓冲区错误漏洞,该漏洞源于越界数组访问可能导致崩溃。
Description (English)
Buffered-reader crate is a Rust-reading library of sequioia personal developers. Before version 1.1.5, there was an error loophole in the buffer zone, which stemmed from cross-border cluster visits that could lead to a breakdown.
Hazard Level
Critical
Vulnerability Type
缓冲区错误
Affected Vendor
个人开发者
Published
2025-07-28
Last Modified
2026-02-24
References
https://crates.io/crates/buffered-reader https://github.com/advisories/GHSA-29mf-62xx-28jq https://lists.sequoia-pgp.org/hyperkitty/list/announce@lists.sequoia-pgp.org/thread/SN2E3QRT4DMQ5JNEK6VIN6DJ5SH766DI/ https://gitlab.com/sequoia-pgp/sequoia/-/tags/buffered-reader%2Fv1.0.2 https://rustsec.org/advisories/RUSTSEC-2023-0039.html https://gitlab.com/sequoia-pgp/sequoia/-/tags/buffered-reader%2Fv1.1.5 https://access.redhat.com/security/cve/cve-2023-53161 https://vigilance.fr/vulnerability/Rust-buffered-reader-denial-of-service-via-Out-of-bound-Array-Index-48320