CVE-2020-36443: Use of Uninitialized Resource in libp2p-deflate

Severity: Critical

CVSS Score: 9.8

An issue was discovered in the libp2p-deflate crate before 0.27.1 for Rust. An uninitialized buffer is passed to AsyncRead::poll_read(), which is a user-provided trait function.