CVE-2020-35864

Name
CVE-2020-35864
Description
An issue was discovered in the flatbuffers crate through 2020-04-11 for Rust. read_scalar (and read_scalar_at) can transmute values without unsafe blocks.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Exploit https://rustsec.org/advisories/RUSTSEC-2020-0009.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:google:flatbuffers:*:*:*:*:*:rust:*:* flatbuffers >= 0.4.0 <= 1.12.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
flatbuffers 3.13-community 1.12.0-r1 Natanael Copa <ncopa@alpinelinux.org> fixed