GHSA-pwhf-7427-9vv2

Опубликовано: 25 авг. 2021

Источник: github

Github: Прошло ревью

CVSS3: 5.9

Описание

Non-atomic writes in cgc

Multiple soundness issues in `Ptr` in cgc

Affected versions of this crate have the following issues:

Ptr implements Send and Sync for all types, this can lead to data races by sending non-thread safe types across threads.
Ptr::get violates mutable alias rules by returning multiple mutable references to the same object.
Ptr::write uses non-atomic writes to the underlying pointer. This means that when used across threads it can lead to data races.

Ссылки

Пакеты

Наименование

cgc

rust

Затронутые версииВерсия исправления

<= 0.4.0

Отсутствует

EPSS

Процентиль: 51%

0.0028

Низкий

5.9 Medium

CVSS3

CVE ID

CVE-2020-36468

Дефекты

CWE-657

Связанные уязвимости

CVE-2020-36468

CVSS3: 5.9

nvd

больше 4 лет назад

An issue was discovered in the cgc crate through 2020-12-10 for Rust. Ptr::write performs non-atomic write operations on an underlying pointer.

EPSS

Процентиль: 51%

0.0028

Низкий

5.9 Medium

CVSS3

CVE ID

CVE-2020-36468

Дефекты

CWE-657

GHSA-pwhf-7427-9vv2

Описание

Multiple soundness issues in Ptr in cgc

Ссылки

Пакеты

CVE ID

Дефекты

Связанные уязвимости

CVE ID

Дефекты

Multiple soundness issues in `Ptr` in cgc