Medium severity5.8GHSA Advisory· Published Jun 12, 2026· Updated Jun 16, 2026
CVE-2026-46690
CVE-2026-46690
Description
unbounded_spsc is an "unbounded" extension of bounded_spsc_queue. In versions 0.2.0 and prior, sender::send pointer-as-value transmute causes OOB read and fake-Arc drop under TX/RX race. At time of publication, there are no publicly available patches.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
unbounded-spsccrates.io | <= 0.2.0 | — |
Affected products
3<= 0.2.0+ 1 more
- (no CPE)range: <= 0.2.0
- cpe:2.3:a:spearman:unbounded-spsc:*:*:*:*:*:*:*:*range: <=0.2.0
Patches
Vulnerability mechanics
References
3- github.com/spearman/unbounded-spsc/security/advisories/GHSA-6m57-8r3p-pqx6nvdExploitVendor AdvisoryWEB
- github.com/advisories/GHSA-6m57-8r3p-pqx6ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-46690ghsaADVISORY
News mentions
0No linked articles in our index yet.