In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade ruzstd
to version 0.7.3 or higher.
Affected versions of this package are vulnerable to Out-of-bounds Read due to the copy_bytes_overshooting
process. An attacker can read up to 15 bytes of uninitialized or out-of-bounds memory, potentially leading to sensitive information disclosure by decompressing a specially crafted archive.