9526 matches found
CVE-2021-29933
An issue was discovered in the insertmany crate through 2021-01-26 for Rust. Elements may be dropped twice if a .next method panics...
CVE-2021-29934
An issue was discovered in PartialReader in the uuod crate before 0.0.4 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation...
CVE-2021-29939
An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if sizehint provides certain anomalous data...
CVE-2021-29941
An issue was discovered in the reorder crate through 2021-02-24 for Rust. swapindex has an out-of-bounds write if an iterator returns a len that is too small...
Out-of-bounds
An issue was discovered in the reorder crate through 2021-02-24 for Rust. swapindex has an out-of-bounds write if an iterator returns a len that is too small...
Design/Logic Flaw
An issue was discovered in the rocket crate before 0.4.7 for Rust. uri::Formatter can have a use-after-free if a user-provided function panics...
Design/Logic Flaw
An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if sizehint provides certain anomalous data...
Deserialization of untrusted data
An issue was discovered in the parseduration crate through 2021-03-18 for Rust. It allows attackers to cause a denial of service CPU and memory consumption via a duration string with a large exponent...
Information disclosure
An issue was discovered in the adtensor crate through 2021-01-11 for Rust. There is a drop of uninitialized memory via the FromIterator implementation for Vector and Matrix...
Code injection
An issue was discovered in the reorder crate through 2021-02-24 for Rust. swapindex can return uninitialized values if an iterator returns a len that is too large...
Double free
An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free in through and throughand upon a panic of the map function...
Code injection
An issue was discovered in the insertmany crate through 2021-01-26 for Rust. Elements may be dropped twice if a .next method panics...
Double free
An issue was discovered in the slice-deque crate through 2021-02-19 for Rust. A double drop can occur in SliceDeque::drainfilter upon a panic in a predicate function...
CVE-2021-29939
An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if sizehint provides certain anomalous data...
Memory corruption
An issue was discovered in the telemetry crate through 2021-02-17 for Rust. There is a drop of uninitialized memory if a value.clone call panics within misc::vecwithsize...
Double free
An issue was discovered in the endiantrait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics...
UBUNTU-CVE-2021-29939
An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if sizehint provides certain anomalous data...
CVE-2021-29929
The CVE-2021-29929 entry concerns the endian_trait crate for Rust (through 2021-01-04). The root cause is a panic in a user-provided Endian implementation, which can trigger a double drop of the underlying value. This is described across multiple sources (e.g., RUSTSEC-2021-0039 and related advis...
CVE-2021-29929
An issue was discovered in the endiantrait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics...
CVE-2021-29930
CVE-2021-29930 affects the arenavec crate for Rust (up to 0.1.1 / affected through 2021-01-12). The root cause is a drop of uninitialized memory that can occur when a panic happens inside T::default(), which can lead to memory corruption (and in related advisories, an out-of-bounds write or doubl...