CVE-2018-25025

CVE-2018-25025

EPSS 1.3%

An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/actix-web/RUSTSEC-2018-0019.md https://rustsec.org/advisories/RUSTSEC-2018-0019.html