rustsec/advisory-db
1
0
Fork 0
mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00
Code Issues Packages Projects Releases Wiki Activity

Update RUSTSEC-2025-0126 (#2488)

Browse Source 
Add patched version number to RUSTSEC-2025-0126.
This commit is contained in:
Markus Pettersson
2025-11-27 22:53:33 +01:00
committed by GitHub
parent cc3c393dba
commit 90c47c2196
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
crates/nftnl/RUSTSEC-2025-0126.md
View File

@@ -8,7 +8,7 @@ categories = ["memory-corruption"]
aliases = ["GHSA-2fjw-whxm-9v4q"]
[versions]
patched = [">= 0.8.0"]
patched = [">= 0.9.0"]
```
# Heap-buffer-overflow in nftnl::Batch::with_page_size (nftnl-rs)
@@ -21,3 +21,7 @@ batch_page_size
.checked_add(crate::nft_nlmsg_maxsize())
.expect("batch_page_size is too large and would overflow");
```
## Mitigation
Upgrade to version `0.9.0` or later, which aborts instead.