Bug 24816 - Security issue in Rust 1.34.1 - CVE-2019-12083
Summary: Security issue in Rust 1.34.1 - CVE-2019-12083
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: Rémi Verschelde
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-05-14 18:19 CEST by Stig-Ørjan Smelror
Modified: 2019-05-15 09:50 CEST (History)
1 user (show)

See Also:
Source RPM: rust-1.34.1-2.mga7.src.rpm
CVE: CVE-2019-12083
Status comment: Fixed upstream in 1.34.2

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Stig-Ørjan Smelror 2019-05-14 18:19:00 CEST 
Sean McArthur reported a security vulnerability affecting the standard library that caused the Error::downcast family of methods to perform unsound casts when a manual implementation of the Error::type_id method returned the wrong TypeId, leading to security issues such as out of bounds reads/writes/etc.

The Error::type_id method was recently stabilized as part of Rust 1.34.0. This point release destabilizes it, preventing any code on the stable and beta channels to implement or use it, awaiting future plans that will be discussed in issue #60784.

https://blog.rust-lang.org/2019/05/14/Rust-1.34.2.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12083

This is fixed in version 1.34.2.
Stig-Ørjan Smelror 2019-05-14 18:19:40 CEST

Status comment: (none) => Fixed upstream in 1.34.2
CVE: (none) => CVE-2019-12083

Comment 1 Marja Van Waes 2019-05-14 21:38:44 CEST 
Assigning to our registered rust maintainer

CC: (none) => marja11
Assignee: bugsquad => rverschelde

Comment 2 Rémi Verschelde 2019-05-15 09:50:17 CEST 
Thanks, fixed in Cauldron with rust-1.34.2-1.mga7.

Resolution: (none) => FIXED
Version: 7 => Cauldron
Status: NEW => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.