CVE-2020-35923

CVE-2020-35923 concerns the Rust crate ordered-float . A NotNan value can contain a NaN after certain assignment operators (e.g., NotNan::add_assign , NotNan::mul_assign ); unsafe code paths in safe comparisons assume non-NaN, risking undefined behavior. Affected versions are before 1.1.1 and 2.x...