Описание
Drop of uninitialized memory in stack_dst
Affected versions of stack_dst used a push_inner function that increased the internal length of the array and then called val.clone(). If the val.clone() call panics, the stack could drop an already dropped element or drop uninitialized memory. This issue was fixed in 2a4d538 by increasing the length of the array after elements are cloned.
Пакеты
Наименование
stack_dst
rust
Затронутые версииВерсия исправления
< 0.6.1
0.6.1
Связанные уязвимости
CVSS3: 9.8
nvd
почти 5 лет назад
An issue was discovered in the stack_dst crate before 0.6.1 for Rust. Because of the push_inner behavior, a drop of uninitialized memory can occur upon a val.clone() panic.