5 matches found
CVE-2020-36444
An issue was discovered in the async-coap crate through 2020-12-08 for Rust. Send and Sync are implemented for ArcGuard without trait bounds on RC...
async-coap-tokio (=0.1.0) potentially affected by CVE-2020-36444 via async-coap (=0.1.0)
async-coap CARGO version =0.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on async-coap and may be impacted: - async-coap-tokio =0.1.0 Source cves: CVE-2020-36444 Source advisory: OSV:GHSA-9J8Q-M9X5-9G6J...
CVE-2020-36444
creationtimestamp| type| source ---|---|--- 2021-08-08 12:41:33+00:00| seen| https://t.me/cibsecurity/26993...
CVE-2020-36444
An issue was discovered in the async-coap crate through 2020-12-08 for Rust. Send and Sync are implemented for ArcGuard without trait bounds on RC...
CVE-2020-36444
Summary (CVE-2020-36444) : The issue affects the Rust crate async-coap (through 2020-12-08). The Send/Sync implementations for ArcGuard are defined without trait bounds on RC. This enables scenarios where RC may be non-Send or non-Sync to be sent across threads, and allows concurrent access to RC...