High severity8.2NVD Advisory· Published Apr 14, 2021· Updated Jun 17, 2026
CVE-2020-36323
CVE-2020-36323
Description
In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized bytes to be exposed (or the program to crash) if the borrowed string changes after its length is checked.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Rust/standard librarydescription
Patches
Vulnerability mechanics
References
7- github.com/rust-lang/rust/issues/80335nvdPatchThird Party Advisory
- github.com/rust-lang/rust/pull/81728nvdPatchThird Party Advisory
- github.com/rust-lang/rust/pull/81728nvdPatchThird Party Advisory
- github.com/rust-lang/rust/pull/81728nvdPatchThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CZ337CM4GFJLRDFVQCGC7J25V65JXOG5/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFUO3URYCO73D2Q4WYJBWAMJWGGVXQO4/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZG65GUW6Z2CYOQHF7T3TB5CZKIX6ZJE/nvd
News mentions
0No linked articles in our index yet.