Lucene search
K

98 matches found

OSV
OSV
added 2021/08/25 9:1 p.m.31 views

GHSA-PQQP-XMHJ-WGCW crossbeam-deque Data Race before v0.7.4 and v0.8.1

Impact In the affected version of this crate, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never popped. If tasks are allocated on the heap, this can cause double free and a memory leak. If not, th...

9.8CVSS9.7AI score0.01923EPSS
Exploits0References18
Github Security Blog
Github Security Blog
added 2021/08/25 9:1 p.m.38 views

crossbeam-deque Data Race before v0.7.4 and v0.8.1

Impact In the affected version of this crate, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never popped. If tasks are allocated on the heap, this can cause double free and a memory leak. If not, th...

9.8CVSS0.6AI score0.01923EPSS
Exploits0References18Affected Software1
vulnersOsv
vulnersOsv
added 2021/08/25 9:1 p.m.7 views

a2 (=0.3.6), aerospike (=0.3.0) +204 more potentially affected by CVE-2021-32810 via crossbeam-deque (>=0.1.1 <=0.6.3)

crossbeam-deque CARGO version =0.1.1, =0.2.5, =0.9.0, =0.1.0, =0.4.0, =0.5.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.5.0 and more Source cves: CVE-2021-32810 Source advisory: OSV:GHSA-PQQP-XMHJ-WGCW...

9.8CVSS7.2AI score0.01923EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 8:54 p.m.6 views

aiowrap (=0.1.0), ambisonic (>=0.1.0 <=0.3.1) +158 more potentially affected by CVE-2021-29938 via slice-deque (>=0.1.16 <=0.3.0)

slice-deque CARGO version =0.1.16, =0.1.0, =0.8.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.8.0, =0.3.0, =0.3.0, =0.4.0, =0.8.0, =0.15.3 and more Source cves: CVE-2021-29938 Source advisory: OSV:GHSA-P9GF-GMFV-398M...

7.5CVSS7AI score0.01135EPSS
Exploits1
OSV
OSV
added 2021/08/25 8:54 p.m.2 views

GHSA-P9GF-GMFV-398M Double free in slice-deque

An issue was discovered in the slice-deque crate through 2021-02-19 for Rust. A double drop can occur in SliceDeque::drainfilter upon a panic in a predicate function...

7.5CVSS7.1AI score0.01135EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2021/08/25 8:44 p.m.2 views

buf-ref-reader (=0.3.0), buf_redux (>=0.7.0 <=0.8.1) +9 more potentially affected by CVE-2019-15543 via slice-deque (=0.1.16)

slice-deque CARGO version =0.1.16 is affected by a known vulnerability. The following packages have a transitive dependency on slice-deque and may be impacted: - buf-ref-reader =0.3.0 - bufredux =0.7.0, =0.1.0, =0.2.0, =0.1.0, =0.12.0, =0.1.0, =0.2.0 - seqio =0.3.0 - stocker =0.2.0 Source cves:...

9.8CVSS7.2AI score0.01611EPSS
Exploits0
OSV
OSV
added 2021/08/25 8:44 p.m.15 views

GHSA-C3M3-C39Q-PV23 Out of bounds write in slice-deque

Affected versions of this crate entered a corrupted state if mem::sizeof:: % allocationgranularity != 0 and a specific allocation pattern was used: sufficiently shifting the deque elements over the mirrored page boundary. This allows an attacker that controls controls both element insertion and...

9.8CVSS9.2AI score0.01611EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2021/08/25 8:44 p.m.23 views

Out of bounds write in slice-deque

Affected versions of this crate entered a corrupted state if mem::sizeof:: % allocationgranularity != 0 and a specific allocation pattern was used: sufficiently shifting the deque elements over the mirrored page boundary. This allows an attacker that controls controls both element insertion and...

9.8CVSS8.7AI score0.01611EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2021/08/25 8:42 p.m.29 views

Memory corruption slice-deque

Affected versions of this crate did not properly update the head and tail of the deque when inserting and removing elements from the front if, before insertion or removal, the tail of the deque was in the mirrored memory region, and if, after insertion or removal, the head of the deque is exactly...

9.8CVSS8.6AI score0.01611EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/08/25 8:42 p.m.8 views

GHSA-HR3C-6MMP-6M39 Memory corruption slice-deque

Affected versions of this crate did not properly update the head and tail of the deque when inserting and removing elements from the front if, before insertion or removal, the tail of the deque was in the mirrored memory region, and if, after insertion or removal, the head of the deque is exactly...

9.8CVSS9.2AI score0.01611EPSS
Exploits0References4
OSV
OSV
added 2021/08/08 6:15 a.m.5 views

CVE-2020-36452

An issue was discovered in the array-tools crate before 0.3.2 for Rust. FixedCapacityDequeLike::clone has a drop of uninitialized memory...

9.8CVSS7.3AI score0.01119EPSS
Exploits0References2
OSV
OSV
added 2021/08/02 7:15 p.m.3 views

DEBIAN-CVE-2021-32810

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS8.1AI score0.01923EPSS
Exploits0References1
NVD
NVD
added 2021/08/02 7:15 p.m.14 views

CVE-2021-32810

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS0.01923EPSS
Exploits0References15
OSV
OSV
added 2021/08/02 7:15 p.m.14 views

CVE-2021-32810

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS7AI score
Exploits0References15
Prion
Prion
added 2021/08/02 7:15 p.m.17 views

Race condition

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

6.8CVSS9.2AI score0.01923EPSS
Exploits0References15Affected Software2
UbuntuCve
UbuntuCve
added 2021/08/02 7:15 p.m.24 views

CVE-2021-32810

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS7.1AI score0.01923EPSS
Exploits0References5
OSV
OSV
added 2021/08/02 7:15 p.m.2 views

UBUNTU-CVE-2021-32810

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS7.2AI score0.01923EPSS
Exploits0References6
Cvelist
Cvelist
added 2021/08/02 6:35 p.m.25 views

CVE-2021-32810 Data race in crossbeam-deque

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS9.7AI score0.01923EPSS
Exploits0References15
CVE
CVE
added 2021/08/02 6:35 p.m.307 views

CVE-2021-32810

CVE-2021-32810 concerns crossbeam-deque, a Rust crate used for work-stealing deques in task schedulers. A race condition in versions prior to 0.7.4 and 0.8.0 can cause one or more tasks in a worker queue to be popped twice, with potentially forgotten tasks, leading to a double-free and memory lea...

9.8CVSS9.7AI score0.01923EPSS
Exploits0References15Affected Software1
Debian CVE
Debian CVE
added 2021/08/02 6:35 p.m.30 views

CVE-2021-32810

crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are forgotten and never...

9.8CVSS10AI score0.01923EPSS
Exploits0
Rows per page
Query Builder