EUVD-2021-1709

Malware in sbrugna...

CVE-2020-36207

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

honeycomb-tracing (=0.0.1) potentially affected by CVE-2020-36207 via aovec (=1.1.0)

aovec CARGO version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on aovec and may be impacted: - honeycomb-tracing =0.0.1 Source cves: CVE-2020-36207 Source advisory: OSV:GHSA-G489-XRW3-3V8W...

GHSA-G489-XRW3-3V8W Data races in aovec

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

Data races in aovec

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

CVE-2020-36207

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

CVE-2020-36207

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

Memory corruption

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

CVE-2020-36207

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur...

CVE-2020-36207

CVE-2020-36207 affects the Rust crate name‑sake “aovec” (Aovec). The root cause is that Aovec does not impose bounds on its Send/Sync traits, which can enable data races and memory corruption when values are used across threads. The vulnerability is documented in multiple sources (e.g., RustSec a...

honeycomb-tracing (=0.0.1) potentially affected by CVE-2020-36207 via aovec (=1.1.0)

aovec CARGO version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on aovec and may be impacted: - honeycomb-tracing =0.0.1 Source cves: CVE-2020-36207 Source advisory: OSV:RUSTSEC-2020-0099...

RUSTSEC-2020-0099 Aovec<T> lacks bound on its Send and Sync traits allowing data races

aovec::Aovec is a vector type that implements Send and Sync for all types T. This allows non-Send types such as Rc and non-Sync types such as Cell to be used across thread boundaries which can trigger undefined behavior and memory corruption...

Aovec<T> lacks bound on its Send and Sync traits allowing data races

aovec::Aovec is a vector type that implements Send and Sync for all types T. This allows non-Send types such as Rc and non-Sync types such as Cell to be used across thread boundaries which can trigger undefined behavior and memory corruption...