CVE-2021-42694 log

Source
Severity Medium
Remote Yes
Type Content spoofing
Description
An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render visually identical to a target identifier. Adversaries can leverage this to inject code via adversarial identifier definitions in upstream software dependencies invoked deceptively in downstream software.
Group Package Affected Fixed Severity Status Ticket
AVG-2507 rust 1:1.56.0-3 Medium Not affected
References
https://trojansource.codes/
https://trojansource.codes/trojan-source.pdf
https://github.com/nickboucher/trojan-source