4 matches found
CVE-2020-35891
An issue was discovered in the ordnung crate through 2020-09-03 for Rust. compact::Vec violates memory safety via a remove double free...
xxlib (>=0.1.0 <=0.4.0) potentially affected by CVE-2020-35890 +1 more via ordnung (=0.0.1)
ordnung CARGO version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on ordnung and may be impacted: - xxlib =0.1.0, =0.4.0 Source cves: CVE-2020-35890, CVE-2020-35891 Source advisory: OSV:GHSA-QRWC-JXF5-G8X6...
CVE-2020-35891
CVE-2020-35891 concerns the Rust crate ordnung (up to version 0.0.1) where the type compact::Vec can violate memory safety due to a double-free during an emulated remove() operation. The issue is explicitly described as a memory-safety problem in compact::Vec, including a double-free scenario whe...
xxlib (>=0.1.0 <=0.4.0) potentially affected by CVE-2020-35890 +1 more via ordnung (=0.0.1)
ordnung CARGO version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on ordnung and may be impacted: - xxlib =0.1.0, =0.4.0 Source cves: CVE-2020-35890, CVE-2020-35891 Source advisory: OSV:RUSTSEC-2020-0038...