CVE-2020-36454
CVE-2020-36454 concerns the Rust crate parc . The issue is that the type LockWeak has an unconditional implementation of Send without trait bounds on T , and it does not own the underlying data (it only provides &T ). This enables concurrent access to a non-Sync type, which can lead to undefined ...