2 matches found
CVE-2021-28034
An issue was discovered in the stackdst crate before 0.6.1 for Rust. Because of the pushinner behavior, a double free can occur upon a val.clone panic...
CVE-2021-28034
The CVE-2021-28034 issue affects the Rust stack_dst crate prior to 0.6.1. The root cause is in push_inner, which increases the internal array length and then calls val.clone(); if val.clone() panics, a double free/memory-safety issue can occur. Several connected advisories (Red Hat, OSV, GHSA, CN...