N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-ghpq-vjxw-ch5w

EPSS Score

CWE

CWE-416

Published

8/25/2021

Updated

1/11/2023

KEV Status

Technology

Rust

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-ghpq-vjxw-ch5w

GHSA-ghpq-vjxw-ch5w: Use after free in libpulse-binding

Overview

Version 1.2.1 of the libpulse-binding Rust crate, released on the 15th of June 2018, fixed a pair of use-after-free issues with the objects returned by the get_format_info and get_context methods of Stream objects. These objects were mistakenly being constructed without setting an important flag to prevent destruction of the underlying C objects they reference upon their own destruction.

This advisory is being written retrospectively, having previously only been noted in the changelog. No CVE assignment was sought.

Patches

Users are required to update to version 1.2.1 or newer.

Versions older than 1.2.1 have been yanked from crates.io. This was believed to have already been done at the time of the 1.2.1 release, but upon double checking now they were found to still be available, so has been done now (22nd October 2020).

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-ghpq-vjxw-ch5w

EPSS Score

CWE

CWE-416

Published

8/25/2021

Updated

1/11/2023

KEV Status

Technology

Rust

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
libpulse-binding	rust	< 1.2.1	1.2.1

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The advisory explicitly names get_format_info and get_context methods as sources of UAF vulnerabilities. Both methods returned wrapper objects that failed to set critical ownership flags, causing premature destruction of underlying C objects they referenced. This matches the CWE-416 pattern where resource destruction isn't properly managed. The RustSec advisory directly lists these functions in its 'Affected Functions' section, confirming their involvement.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Ov*rvi*w V*rsion *.*.* o* t** `li*puls*-*in*in*` Rust *r*t*, r*l**s** on t** **t* o* Jun* ****, *ix** * p*ir o* us*-**t*r-*r** issu*s wit* t** o*j**ts r*turn** *y t** `**t_*orm*t_in*o` *n* `**t_*ont*xt` m*t*o*s o* `Str**m` o*j**ts. T**s* o*j**ts

Reasoning

T** **visory *xpli*itly n*m*s **t_*orm*t_in*o *n* **t_*ont*xt m*t*o*s *s sour**s o* U** vuln*r**iliti*s. *ot* m*t*o*s r*turn** wr*pp*r o*j**ts t**t **il** to s*t *riti**l own*rs*ip *l**s, **usin* pr*m*tur* **stru*tion o* un**rlyin* * o*j**ts t**y r**

N/A

Basic Information

Concerned about an active attack path?

GHSA-ghpq-vjxw-ch5w: Use after free in libpulse-binding

Overview

Patches

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI