2 matches found
CVE-2020-35906
The CVE concerns the Rust futures-task crate before 0.3.6. The issue is a use-after-free in futures_task::waker when used with non-static types, potentially leading to memory safety problems. Affected software is the futures-task crate (Rust) prior to version 0.3.6; the root cause is not explicit...
CVE-2020-35907
The CVE-2020-35907 entry concerns the Rust futures-task crate prior to 0.3.5. The issue, in futures_task::noop_waker_ref, permits a NULL pointer dereference, potentially causing a crash. Affected component: futures-task crate before 0.3.5. Impact statements are limited to what is stated; no explo...