5 matches found
almond (=0.2.0), ascesis (=0.0.6) +86 more potentially affected by CVE-2020-36442 via beef (>=0.1.5 <=0.4.4)
beef CARGO version =0.1.5, =0.2.0, =0.1.0, =0.5.6, =0.1.0, =0.1.0, =0.5.4, =0.2.0, =0.2.0, =0.1.0, =0.1.2 and more Source cves: CVE-2020-36442 Source advisory: OSV:GHSA-M7W4-8WP8-M2XQ...
CVE-2020-36442
creationtimestamp| type| source ---|---|--- 2021-08-08 12:35:46+00:00| seen| Telegram/V81GxucyfbrUjHy20c4jGsMs99yLkUqxDaMPoFAaV8XYbBs...
CVE-2020-36442
The CVE-2020-36442 issue concerns the beef crate for Rust (pre-0.5.0) where beef::Cow lacked a Sync bound on its Send trait. This omission enables data races by allowing Cow to hold non-Sync types (e.g., Cell/RefCell) inside, potentially leading to memory corruption. Several connected sources cor...
CVE-2020-36442
An issue was discovered in the beef crate before 0.5.0 for Rust. beef::Cow has no Sync bound on its Send trait...
almond (=0.2.0), ascesis (=0.0.6) +86 more potentially affected by CVE-2020-36442 via beef (>=0.1.5 <=0.4.4)
beef CARGO version =0.1.5, =0.2.0, =0.1.0, =0.5.6, =0.1.0, =0.1.0, =0.5.4, =0.2.0, =0.2.0, =0.1.0, =0.1.2 and more Source cves: CVE-2020-36442 Source advisory: OSV:RUSTSEC-2020-0122...