Mozilla Rust Memory Corruption Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust im crate through 2020-11-09, which stems from a limitation that TreeFocus does not have a send feature or a synchronization feature, resulting in a data contention...

Uninitialized memory access in toodee

An issue was discovered in the toodee crate before 0.3.0 for Rust. The row-insertion feature allows attackers to read the contents of uninitialized memory locations...

GHSA-XM9M-2VJ8-FMFR Uninitialized memory access in toodee

An issue was discovered in the toodee crate before 0.3.0 for Rust. The row-insertion feature allows attackers to read the contents of uninitialized memory locations...

GHSA-6GVC-4JVJ-PWQ4 Duplicate Advisory: Use after free in libpulse-binding

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-f56g-chqp-22m9. This link is maintained to preserve external references. Original Description An issue was discovered in the libpulse-binding crate before 2.5.0 for Rust. proplist::Iterator can cause a...

Duplicate Advisory: Use after free in libpulse-binding

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-f56g-chqp-22m9. This link is maintained to preserve external references. Original Description An issue was discovered in the libpulse-binding crate before 2.5.0 for Rust. proplist::Iterator can cause a...

Double free in algorithmica

An issue was discovered in the algorithmica crate through 2021-03-07 for Rust. In the affected versions of this crate, mergesort::merge wildly duplicates and drops ownership of T without guarding against double-free. Due to such implementation, simply invoking mergesort::merge on Vec can cause...

GHSA-W5CR-FRPH-HW7F Use of uninitialized buffer in rkyv

An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization, the archive content may contain uninitialized values of certain parts of a struct...

Use of uninitialized buffer in rkyv

An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization, the archive content may contain uninitialized values of certain parts of a struct...

barberousse (>=0.1.0 <=0.1.6), borrowing_exerci (>=0.1.0 <=0.4.51) +18 more potentially affected by CVE-2021-36753 via bat (>=0.12.1 <=0.17.1)

bat CARGO version =0.12.1, =0.1.0, =0.1.0, =0.4.0, =0.6.0, =0.1.0, =0.2.0, =0.0.2, =0.16.0, =0.16.0, =0.1.0, =0.5.2, =0.12.0, =0.11.1, =0.12.0, =0.11.0, =0.12.1 and more Source cves: CVE-2021-36753 Source advisory: OSV:GHSA-P24J-H477-76Q3...

Update unsound DrainFilter and RString::retain

An issue was discovered in the abistable crate before 0.9.1 for Rust. DrainFilter lacks soundness because of a double drop...

GHSA-VQ23-5H4F-VWPV Update unsound DrainFilter and RString::retain

An issue was discovered in the abistable crate before 0.9.1 for Rust. DrainFilter lacks soundness because of a double drop...

GHSA-WQXC-QRQ4-W5V4 Update unsound DrainFilter and RString::retain

An issue was discovered in the abistable crate before 0.9.1 for Rust. A retain call can create an invalid UTF-8 string, violating soundness...

Update unsound DrainFilter and RString::retain

An issue was discovered in the abistable crate before 0.9.1 for Rust. A retain call can create an invalid UTF-8 string, violating soundness...

a2 (=0.3.6), aerospike (=0.3.0) +204 more potentially affected by CVE-2021-32810 via crossbeam-deque (>=0.1.1 <=0.6.3)

crossbeam-deque CARGO version =0.1.1, =0.2.5, =0.9.0, =0.1.0, =0.4.0, =0.5.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.5.0 and more Source cves: CVE-2021-32810 Source advisory: OSV:GHSA-PQQP-XMHJ-WGCW...

GHSA-75CQ-G75G-RXFF use-after-free vulnerability in Rust array-queue

An issue was discovered in the array-queue crate through 2020-09-26 for Rust. A popback call may lead to a use-after-free...

use-after-free vulnerability in Rust array-queue

An issue was discovered in the array-queue crate through 2020-09-26 for Rust. A popback call may lead to a use-after-free...

acto-rs (>=0.2.9 <=0.3.7), alumina (>=0.1.0 <=0.1.1) +378 more potentially affected by CVE-2018-25023 via smallvec (>=0.1.8 <=0.5.1)

smallvec CARGO version =0.1.8, =0.2.9, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.2, =1.0.0, =1.1.0 - approveapi =0.1.0 and more Source cves: CVE-2018-25023 Source advisory: OSV:GHSA-66P5-J55P-32R9...

SyncChannel<T> can move 'T: !Send' to other threads

Affected versions of this crate unconditionally implement Send/Sync for SyncChannel. SyncChannel doesn't provide access to &T but merely serves as a channel that consumes and returns owned T. Users can create UB in safe Rust by sending T: !Send to other threads with SyncChannel::send/recv APIs...

afterburn (=4.1.0), aoaddons (>=0.1.1 <=0.1.6) +50 more potentially affected by CVE-2019-25054 via pnet (>=0.12.0 <=0.26.0)

pnet CARGO version =0.12.0, =0.1.1, =0.0.2, =0.6.0, =0.1.0, =1.3.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.3.1, =0.4.0 and more Source cves: CVE-2019-25054 Source advisory: OSV:GHSA-R6FF-2Q3C-V3PV...

GHSA-8Q64-WRFR-Q48C Data races in model

Shared data structure in model crate implements Send and Sync traits regardless of the inner type. This allows safe Rust code to trigger a data race, which is undefined behavior in Rust. Users are advised to treat Shared as an unsafe type. It should not be used outside of the testing context, and...