GHSA-g489-xrw3-3v8w

Опубликовано: 25 авг. 2021

Источник: github

Github: Прошло ревью

CVSS3: 7

Описание

Data races in aovec

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2020-36207
https://rustsec.org/advisories/RUSTSEC-2020-0099.html

Пакеты

Наименование

aovec

rust

Затронутые версииВерсия исправления

<= 1.1.0

Отсутствует

EPSS

Процентиль: 21%

0.00068

Низкий

7 High

CVSS3

CVE ID

CVE-2020-36207

Дефекты

CWE-662

CWE-787

Связанные уязвимости

CVE-2020-36207

CVSS3: 7

nvd

около 5 лет назад

An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec<T> does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur.

EPSS

Процентиль: 21%

0.00068

Низкий

7 High

CVSS3

CVE ID

CVE-2020-36207

Дефекты

CWE-662

CWE-787