Critical severityNVD Advisory· Published Sep 14, 2020· Updated Aug 4, 2024
CVE-2020-25575
CVE-2020-25575
Description
An issue was discovered in the failure crate through 0.1.5 for Rust. It may introduce "compatibility hazards" in some applications, and has a type confusion flaw when downcasting. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: This may overlap CVE-2019-25010
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
failurecrates.io | <= 0.1.8 | — |
Affected products
2- failure crate/failure cratedescription
Patches
Vulnerability mechanics
References
9- github.com/advisories/GHSA-jq66-xh47-j9f3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-25575ghsaADVISORY
- boats.gitlab.io/blog/post/failure-to-fehlerghsaWEB
- boats.gitlab.io/blog/post/failure-to-fehler/mitrex_refsource_MISC
- github.com/RustCrypto/hashes/pull/91ghsaWEB
- github.com/RustSec/advisory-db/blob/main/crates/failure/RUSTSEC-2019-0036.mdghsaWEB
- github.com/rust-lang-nursery/failure/issues/336ghsax_refsource_MISCWEB
- rustsec.org/advisories/RUSTSEC-2019-0036.htmlghsaWEB
- rustsec.org/advisories/RUSTSEC-2020-0036.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.