Bug 24816

Summary: Security issue in Rust 1.34.1 - CVE-2019-12083
Product: Mageia Reporter: Stig-Ørjan Smelror <smelror>
Component: SecurityAssignee: Rémi Verschelde <rverschelde>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: marja11
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: rust-1.34.1-2.mga7.src.rpm CVE: CVE-2019-12083
Status comment: Fixed upstream in 1.34.2

Description Stig-Ørjan Smelror 2019-05-14 18:19:00 CEST 
Sean McArthur reported a security vulnerability affecting the standard library that caused the Error::downcast family of methods to perform unsound casts when a manual implementation of the Error::type_id method returned the wrong TypeId, leading to security issues such as out of bounds reads/writes/etc.

The Error::type_id method was recently stabilized as part of Rust 1.34.0. This point release destabilizes it, preventing any code on the stable and beta channels to implement or use it, awaiting future plans that will be discussed in issue #60784.

https://blog.rust-lang.org/2019/05/14/Rust-1.34.2.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12083

This is fixed in version 1.34.2.
Stig-Ørjan Smelror 2019-05-14 18:19:40 CEST

Status comment: (none) => Fixed upstream in 1.34.2
CVE: (none) => CVE-2019-12083

Comment 1 Marja Van Waes 2019-05-14 21:38:44 CEST 
Assigning to our registered rust maintainer

CC: (none) => marja11
Assignee: bugsquad => rverschelde

Comment 2 Rémi Verschelde 2019-05-15 09:50:17 CEST 
Thanks, fixed in Cauldron with rust-1.34.2-1.mga7.

Resolution: (none) => FIXED
Version: 7 => Cauldron
Status: NEW => RESOLVED