2 matches found
CVE-2021-28035
An issue was discovered in the stackdst crate before 0.6.1 for Rust. Because of the pushinner behavior, a drop of uninitialized memory can occur upon a val.clone panic...
CVE-2021-28035
CVE-2021-28035 affects the Rust crate stack_dst, prior to 0.6.1. The root cause is the push_inner behavior, which can cause a drop of uninitialized memory if a val.clone() panics. The issue has been fixed in a later commit (and by upgrading to 0.6.1+). If exploited, this can lead to memory safety...