Skip to content

Uncaught Exception in libpulse-binding

Moderate severity GitHub Reviewed Published Aug 25, 2021 to the GitHub Advisory Database • Updated Jan 11, 2023

Package

cargo libpulse-binding (Rust)

Affected versions

< 2.6.0

Patched versions

2.6.0

Description

Affected versions of this crate failed to catch panics crossing FFI boundaries via callbacks, which
is a form of UB. This flaw was corrected by [this commit][1] which was included in version 2.6.0.

References

Reviewed Aug 18, 2021
Published to the GitHub Advisory Database Aug 25, 2021
Last updated Jan 11, 2023

Severity

Moderate

Weaknesses

CVE ID

No known CVE

GHSA ID

GHSA-wcxc-jf6c-8rx9

Source code

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.