Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.10 views

Amazon Linux 2023 : cargo, clippy, rust (ALAS2023-2026-1676)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1676 advisory. Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero. CVE-2026-6654 Tenable has extract...

7.3CVSS5.8AI score0.00168EPSS
Exploits1References4
Amazon
Amazon
added 2026/05/14 12:0 a.m.14 views

Important: rust

Issue Overview: Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero. CVE-2026-6654 Affected Packages: rust Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository...

5.1CVSS5.8AI score0.00168EPSS
Exploits1
NVD
NVD
added 2026/04/20 11:16 a.m.5 views

CVE-2026-6654

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

7.3CVSS0.00168EPSS
Exploits1References4
OSV
OSV
added 2026/04/20 11:16 a.m.4 views

UBUNTU-CVE-2026-6654

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

7.3CVSS5.8AI score0.00168EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/04/20 11:16 a.m.6 views

CVE-2026-6654

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

5.1CVSS5.8AI score0.00168EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/20 10:5 a.m.31 views

CVE-2026-6654 Use-After-Free and Double-Free in IntoIter::drop when element drop panics

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

0.00168EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/20 10:5 a.m.4 views

CVE-2026-6654 Use-After-Free and Double-Free in IntoIter::drop when element drop panics

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

5.8AI score0.00168EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/20 10:5 a.m.5 views

EUVD-2026-23832

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

5.1CVSS5.8AI score0.00168EPSS
Exploits1References1
CVE
CVE
added 2026/04/20 10:5 a.m.18 views

CVE-2026-6654

CVE-2026-6654 : A Double-Free / Use-After-Free in the thin_vec crate (IntoIter::drop and ThinVec::clear) can occur when a panic in ptr::drop_in_place prevents zero-length update. Connected docs specify the affected component as the thin_vec crate (Rust ecosystem) with the IBM Open SDK for Rust on...

7.3CVSS5.8AI score0.00168EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/15 7:24 p.m.8 views

thin-vec: Use-After-Free and Double Free in IntoIter::drop When Element Drop Panics

Summary A Double Free / Use-After-Free UAF vulnerability has been identified in the IntoIter::drop and ThinVec::clear implementations of the thinvec crate. Both vulnerabilities share the same root cause and can trigger memory corruption using only safe Rust code — no unsafe blocks required...

7.3CVSS6.1AI score0.00168EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/04/14 12:0 p.m.6 views

RUSTSEC-2026-0103 Use-After-Free and Double Free in IntoIter::drop When Element Drop Panics

A Double Free / Use-After-Free UAF vulnerability has been identified in the IntoIter::drop and ThinVec::clear implementations of the thin-vec crate. Both vulnerabilities share the same root cause and can trigger memory corruption using only safe Rust code - no unsafe blocks required. Undefined...

7.3CVSS5.8AI score0.00168EPSS
Exploits1References3
RustSec
RustSec
added 2026/04/14 12:0 p.m.13 views

Use-After-Free and Double Free in IntoIter::drop When Element Drop Panics

A Double Free / Use-After-Free UAF vulnerability has been identified in the IntoIter::drop and ThinVec::clear implementations of the thin-vec crate. Both vulnerabilities share the same root cause and can trigger memory corruption using only safe Rust code - no unsafe blocks required. Undefined...

7.3CVSS5.7AI score0.00168EPSS
Exploits1Affected Software1
Rows per page
Query Builder