An issue was discovered in the flumedb crate through 2021-01-07 for Rust. read_entry may read from uninitialized memory locations.
References
- https://nvd.nist.gov/vuln/detail/CVE-2021-45684
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/flumedb/RUSTSEC-2021-0086.md
- https://rustsec.org/advisories/RUSTSEC-2021-0086.html
- https://github.com/sunrise-choir/flumedb-rs/pull/12
- https://github.com/sunrise-choir/flumedb-rs/commit/14b7440271c9d2316fab52c745e21087559364f6
- https://github.com/advisories/GHSA-p46c-w9m3-7qr2