{"id":"GHSA-p2q9-9cq6-h3jw","summary":"Out of bounds read in Ozone","details":"An issue was discovered in the ozone crate through version 0.1.0 for Rust. Memory safety is violated because of out-of-bounds access.","aliases":["CVE-2020-35877","CVE-2020-35878","GHSA-m3ww-7hrp-gw9w","RUSTSEC-2020-0022"],"modified":"2023-11-08T04:03:37.072108Z","published":"2021-08-25T20:47:46Z","database_specific":{"severity":"CRITICAL","github_reviewed":true,"cwe_ids":["CWE-119"],"nvd_published_at":"2020-12-31T10:15:00Z","github_reviewed_at":"2021-08-19T21:08:51Z"},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-35877"},{"type":"PACKAGE","url":"https://github.com/bqv/ozone"},{"type":"WEB","url":"https://rustsec.org/advisories/RUSTSEC-2020-0022.html"}],"affected":[{"package":{"name":"ozone","ecosystem":"crates.io","purl":"pkg:cargo/ozone"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"last_affected":"0.1.0"}]}],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/08/GHSA-p2q9-9cq6-h3jw/GHSA-p2q9-9cq6-h3jw.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}