9526 matches found
CVE-2021-29930
An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A drop of uninitialized memory can sometimes occur upon a panic in T::default...
CVE-2021-29931
The CVE concerns the arenavec crate for Rust (up to at least 0.1.1 per OSV entry; affecters mention Rust versions up to 2021-01-12). Root cause: panics in T::drop() (and related paths) can cause double drop or memory management issues, leading to memory corruption. Documented impacts include doub...
CVE-2021-29931
An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A double drop can sometimes occur upon a panic in T::drop...
CVE-2021-29932
The CVE-2021-29932 issue concerns the Rust crate parse_duration (up to 2021-03-18). The vulnerability lies in the duration-string parser, where an input with a large exponent can trigger excessive CPU and memory usage, leading to a denial of service. Affected component: parse_duration crate in Ru...
CVE-2021-29932
An issue was discovered in the parseduration crate through 2021-03-18 for Rust. It allows attackers to cause a denial of service CPU and memory consumption via a duration string with a large exponent...
CVE-2021-29933
The CVE concerns the Rust crate insert_many (pre-2021-01-26). Affected behavior arises when resizing a vector used to insert items: the implementation moved items with ptr::copy, then iterated the provided Iterator; if the iterator’s next() panics, the elements may be dropped twice, causing doubl...
CVE-2021-29933
An issue was discovered in the insertmany crate through 2021-01-26 for Rust. Elements may be dropped twice if a .next method panics...
CVE-2021-29934
CVE-2021-29934 affects PartialReader in the uu_od crate for Rust prior to 0.0.4. The underlying issue is that PartialReader can pass an uninitialized memory buffer to a user-provided Read implementation, allowing an attacker to read contents of uninitialized memory. The vulnerability is documente...
CVE-2021-29934
An issue was discovered in PartialReader in the uuod crate before 0.0.4 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation...
CVE-2021-29935
CVE-2021-29935 affects the rocket crate for Rust prior to 0.4.7. The vulnerability is a use-after-free in uri::Formatter that can occur if a user-provided function panics during formatting. Multiple connected sources confirm the flaw and indicate the affected component and version range. The risk...
CVE-2021-29935
An issue was discovered in the rocket crate before 0.4.7 for Rust. uri::Formatter can have a use-after-free if a user-provided function panics...
CVE-2021-29936
An issue was discovered in the adtensor crate through 2021-01-11 for Rust. There is a drop of uninitialized memory via the FromIterator implementation for Vector and Matrix...
CVE-2021-29936
CVE-2021-29936 affects the adtensor crate for Rust. The FromIterator implementation for Vector and Matrix can drop uninitialized memory, due to its allocation logic, constituting a memory-safety issue. NVD metrics list a high/critical impact (CVSS v3.1: 9.8) with network access requirements. The ...
CVE-2021-29937
CVE-2021-29937 affects the Rust telemetry crate (through 2021-02-17). The issue is a drop of uninitialized memory if a value.clone() panics inside misc::vec_with_size(), as described across multiple sources (e.g., Red Hat, OSV, GHSA). The vulnerability details consistently identify the root cause...
CVE-2021-29937
An issue was discovered in the telemetry crate through 2021-02-17 for Rust. There is a drop of uninitialized memory if a value.clone call panics within misc::vecwithsize...
CVE-2021-29938
CVE-2021-29938 concerns the Rust slice-deque crate. The connected advisories indicate that SliceDeque::drain_filter can drop the last element twice if the predicate panics, due to the implementation mutating the drain-filter iterator index before invoking the predicate. Affected scope is the slic...
CVE-2021-29938
An issue was discovered in the slice-deque crate through 2021-02-19 for Rust. A double drop can occur in SliceDeque::drainfilter upon a panic in a predicate function...
CVE-2021-29939
An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if sizehint provides certain anomalous data...
CVE-2021-29939
An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if sizehint provides certain anomalous data...
CVE-2021-29939
CVE-2021-29939 affects the Rust crate stackvector. The issue is an out-of-bounds write in StackVec::extend when an Iterator.size_hint returns anomalous data, allowing memory overwrite. Multiple sources (OSS/GHSA and OSV entries) confirm the root cause as a size_hint-driven bounds problem and desc...