Описание
An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| rust-spin | fixed | 0.5.2-1 | package | |
| rust-spin | no-dsa | buster | package |
Примечания
https://rustsec.org/advisories/RUSTSEC-2019-0013.html
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 6 лет назад
An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion.
CVSS3: 7.5
nvd
больше 6 лет назад
An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion.
CVSS3: 7.5
github
больше 4 лет назад
Wrong memory orderings violates mutual exclusion in spin