Use After Free in rusqlite
High severity
GitHub Reviewed
Published
Jan 6, 2022
to the GitHub Advisory Database
•
Updated Jun 13, 2023
Package
Affected versions
>= 0.25.0, < 0.25.4
>= 0.26.0, < 0.26.2
Patched versions
0.25.4
0.26.2
Description
Published by the National Vulnerability Database
Dec 26, 2021
Reviewed
Jan 5, 2022
Published to the GitHub Advisory Database
Jan 6, 2022
Last updated
Jun 13, 2023
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. commit_hook has a use-after-free.
References