CVE-2018-25001
MEDIUM6.5EPSS 0.21%Possible use-after-free with `proplist::Iterator`
Published: 8/30/2021Modified: 2/10/2024
Description
Affected versions contained a possible use-after-free issue with property list iteration due to a lack of a lifetime constraint tying the lifetime of a `proplist::Iterator` to the `Proplist` object for which it was created. This made it possible for users, without experiencing a compiler error/warning, to destroy the `Proplist` object before the iterator, thus destroying the underlying C object the iterator works upon, before the iterator may be finished with it. This impacts all versions of the crate before `2.5.0` back to `1.0.5`. Before version `1.0.5` the function that produces the iterator was broken to the point of being useless.
Affected packages (3)
- crates.io/libpulse-binding>= 1.0.5, < 2.5.0
- crates.io/libpulse-binding>= 1.0.5, < 2.5.0
- crates.io/libpulse-binding>= 1.0.5, < 2.5.0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
References (7)
- ADVISORYhttps://github.com/advisories/GHSA-6gvc-4jvj-pwq4
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2018-25001
- PATCHhttps://crates.io/crates/libpulse-binding
- PATCHhttps://github.com/jnqnfe/pulse-binding-rust
- WEBhttps://github.com/jnqnfe/pulse-binding-rust/commit/9e31c82d71749619387cb9d0c9698134d05b28c9
- WEBhttps://github.com/jnqnfe/pulse-binding-rust/security/advisories/GHSA-f56g-chqp-22m9
- WEBhttps://rustsec.org/advisories/RUSTSEC-2018-0020.html