In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Buffer Overflow
Integer Overflow
Rust
Fedora
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.4%