Vulnerabilities > CVE-2018-25023 - Use of Uninitialized Resource vulnerability in Servo Smallvec
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://github.com/servo/rust-smallvec/commit/e64afc8c473d43e375ab42bd33db2d0d4ac4e41b
- https://github.com/servo/rust-smallvec/commit/e64afc8c473d43e375ab42bd33db2d0d4ac4e41b
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/smallvec/RUSTSEC-2018-0018.md
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/smallvec/RUSTSEC-2018-0018.md
- https://rustsec.org/advisories/RUSTSEC-2018-0018.html
- https://rustsec.org/advisories/RUSTSEC-2018-0018.html