Lucene search
GoogleOSV:GHSA-QQMC-HWQP-8G2WHistoryJun 17, 2022 - 12:11 a.m.
Use after free in lru crate
2022-06-1700:11:13
Google
osv.dev
7
lru crate
use after free
vulnerability
iterator
pop function
reference
key
value
EPSS
0.001
Percentile
46.3%
Lru crate has use after free vulnerability.
Lru crate has two functions for getting an iterator. Both iterators give
references to key and value. Calling specific functions, like pop(), will remove
and free the value, and but it’s still possible to access the reference of value
which is already dropped causing use after free.
Related
cve
cve
CVE-2021-45720
2021-12-26 22:15:09
prion
prion
Design/Logic Flaw
2021-12-26 22:15:00
openvas
openvas
Fedora: Security Advisory for 389-ds-base (FEDORA-2022-5aee32fbab)
2022-02-04 00:00:00
ubuntucve
ubuntucve
CVE-2021-45720
2021-12-26 00:00:00
osv
osv
Use after free in lru crate
2021-12-21 12:00:00
Use After Free in lru
2022-01-07 22:37:01
fedora
fedora
[SECURITY] Fedora 35 Update: 389-ds-base-2.0.14-1.fc35
2022-02-04 01:25:16
cnvd
cnvd
Mozilla Rust lru crate post-release reuse vulnerability
2021-12-28 00:00:00
rustsec
rustsec
Use after free in lru crate
2021-12-21 12:00:00
cvelist
cvelist
CVE-2021-45720
2021-12-26 21:45:09
github
github
Use After Free in lru
2022-01-07 22:37:01
nvd
nvd
CVE-2021-45720
2021-12-26 22:15:09