Critical severityNVD Advisory· Published Aug 26, 2019· Updated Aug 5, 2024
CVE-2019-15551
CVE-2019-15551
Description
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is a double free for certain grow attempts with the current capacity.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
smallveccrates.io | >= 0.6.5, < 0.6.10 | 0.6.10 |
Affected products
2- Rust/smallvec cratedescription
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-mm7v-vpv8-xfc3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-15551ghsaADVISORY
- github.com/servo/rust-smallvec/commit/c20cfa8584e649f00dc0767ab6fad63a3f59a296ghsaWEB
- github.com/servo/rust-smallvec/commit/f96322b9243405cc82701cc73f1b19313b413ab4ghsaWEB
- github.com/servo/rust-smallvec/issues/148ghsax_refsource_MISCWEB
- github.com/servo/rust-smallvec/issues/149ghsaWEB
- rustsec.org/advisories/RUSTSEC-2019-0009.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.