Vulnerabilities > CVE-2018-25027 - Use After Free vulnerability in Libpulse-Binding Project Libpulse-Binding 1.0.5/1.1.0/1.2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. get_format_info can cause a use-after-free.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Common Weakness Enumeration (CWE)
References
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/libpulse-binding/RUSTSEC-2018-0021.md
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/libpulse-binding/RUSTSEC-2018-0021.md
- https://rustsec.org/advisories/RUSTSEC-2018-0021.html
- https://rustsec.org/advisories/RUSTSEC-2018-0021.html