CVE-2021-45694: Window may read from uninitialized memory locations in rdiff

January 6, 2022 (updated June 13, 2023)

An issue was discovered in the rdiff crate through version 0.1.2 for Rust. Window may read from uninitialized memory locations.

References

github.com/advisories/GHSA-2rxc-8f9w-fjq8
github.com/dyule/rdiff
github.com/dyule/rdiff/issues/3
nvd.nist.gov/vuln/detail/CVE-2021-45694
raw.githubusercontent.com/rustsec/advisory-db/main/crates/rdiff/RUSTSEC-2021-0094.md
rustsec.org/advisories/RUSTSEC-2021-0094.html

Code Behaviors & Features

Detect and mitigate CVE-2021-45694 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →