2 matches found
CVE-2020-35893
CVE-2020-35893 affects the Rust crate simple-slab, prior to version 0.3.3. The remove() function has an off-by-one error that can cause memory leakage and a drop of uninitialized memory. This is documented across multiple sources (NVD entry and OSV/GHSA advisories) and is not accompanied by publi...
CVE-2020-35892
CVE-2020-35892 : In Rust crate simple-slab , versions before 0.3.3 contain an out-of-bounds read in the index() function. The issue is corroborated by multiple sources (NVD, RH, GHSA/OSV) and is rated CRITICAL (CVSS3.1 base score 9.1; network interaction, no privileges required). The connected do...