bughunt-rust icon indicating copy to clipboard operation
bughunt-rust copied to clipboard
verified publisher icon blt

Collect a list of known defects

Open blt opened this issue 7 years ago • 1 comments

Any bug searching technique lives and dies by its ability to find, well, bugs. To judge how well our approach is doing in this project we need a list of known defects. That is:

  • details / bug issue number
  • [optional] method to reproduce
  • impacted version(s) of Rust

From this we can start to build a table of Time to Discovery for the given issue.

blt avatar Oct 12 '18 22:10 blt

CWE-680: Integer Overflow to Buffer Overflow

Details: https://groups.google.com/forum/#!topic/rustlang-security-announcements/CmSuTm-SaU0 Impacted version: Rust 1.26.0 stable to 1.29.0 stable

blt avatar Oct 12 '18 22:10 blt