messagepack-rs

crates.io4 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting messagepack-rspage 1 of 1

CVE-2021-45690CRITICALCVSS 9.8EG 9.8
2021-12-27
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_binary may read from uninitialized memory locations.
CVE-2021-45691CRITICALCVSS 9.8EG 9.8
2021-12-27
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_string may read from uninitialized memory locations.
CVE-2021-45692CRITICALCVSS 9.8EG 9.8
2021-12-27
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_extension_others may read from uninitialized memory locations.
CVE-2021-45693CRITICALCVSS 9.8EG 9.8
2021-12-27
An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_string_primitive may read from uninitialized memory locations.

Check whether messagepack-rs is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for messagepack-rs CVEs against the assets you own.

Start Free Scan →