{"id":"RUSTSEC-2019-0038","summary":"Fix for UB in failure to catch panics crossing FFI boundaries","details":"Affected versions of this crate failed to catch panics crossing FFI boundaries via callbacks, which\nis a form of UB. This flaw was corrected by [this commit][1] which was included in version 2.6.0.\n\n[1]: https://github.com/jnqnfe/pulse-binding-rust/commit/7fd282aef7787577c385aed88cb25d004b85f494","aliases":["CVE-2019-25055","GHSA-wcxc-jf6c-8rx9","GHSA-xvcg-2q82-r87j"],"modified":"2023-11-01T04:50:54.595386Z","published":"2019-03-10T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/libpulse-binding"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2019-0038.html"},{"type":"WEB","url":"https://github.com/jnqnfe/pulse-binding-rust/commit/7fd282aef7787577c385aed88cb25d004b85f494"}],"affected":[{"package":{"name":"libpulse-binding","ecosystem":"crates.io","purl":"pkg:cargo/libpulse-binding"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"},{"fixed":"2.6.0"}]}],"ecosystem_specific":{"affects":{"functions":[],"os":[],"arch":[]},"affected_functions":null},"database_specific":{"categories":["memory-corruption"],"source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2019-0038.json","informational":"unsound","cvss":null}}],"schema_version":"1.7.3"}