Описание
Double free in crossbeam
Even if an element is popped from a queue, crossbeam would run its destructor inside the epoch-based garbage collector. This is a source of double frees.
The flaw was corrected by wrapping elements inside queues in a ManuallyDrop.
Пакеты
Наименование
crossbeam
rust
Затронутые версииВерсия исправления
>= 0.4.0, < 0.4.1
0.4.1
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 6 лет назад
An issue was discovered in the crossbeam crate before 0.4.1 for Rust. There is a double free because of destructor mishandling.
CVSS3: 9.8
nvd
больше 6 лет назад
An issue was discovered in the crossbeam crate before 0.4.1 for Rust. There is a double free because of destructor mishandling.
CVSS3: 9.8
debian
больше 6 лет назад
An issue was discovered in the crossbeam crate before 0.4.1 for Rust. ...