Critical severityNVD Advisory· Published Apr 1, 2021· Updated Aug 3, 2024
CVE-2021-29937
CVE-2021-29937
Description
An issue was discovered in the telemetry crate through 2021-02-17 for Rust. There is a drop of uninitialized memory if a value.clone() call panics within misc::vec_with_size().
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
telemetrycrates.io | < 0.1.3 | 0.1.3 |
Affected products
4- Rust/telemetrydescription
- osv-coords3 versions
< 0+ 2 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0.1.3
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-hpcx-3pw8-g3j2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-29937ghsaADVISORY
- github.com/Yoric/telemetry.rs/commit/2820cf12f2e08645fd6d1f15b4a90a54d6082a81ghsaWEB
- github.com/Yoric/telemetry.rs/issues/45ghsaWEB
- rustsec.org/advisories/RUSTSEC-2021-0046.htmlghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.