crates.io package
actix-web
pkg:cargo/actix-web
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-25024 | — | < 0.7.15 | 0.7.15 | Dec 26, 2021 | An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly coerce an immutable reference into a mutable reference, leading to memory corruption. | ||
| CVE-2018-25025 | — | < 0.7.15 | 0.7.15 | Dec 26, 2021 | An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption. | ||
| CVE-2018-25026 | — | < 0.7.15 | 0.7.15 | Dec 26, 2021 | An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can add the Send marker trait to an object that cannot be sent between threads safely, leading to memory corruption. |
- CVE-2018-25024Dec 26, 2021affected < 0.7.15fixed 0.7.15
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly coerce an immutable reference into a mutable reference, leading to memory corruption.
- CVE-2018-25025Dec 26, 2021affected < 0.7.15fixed 0.7.15
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption.
- CVE-2018-25026Dec 26, 2021affected < 0.7.15fixed 0.7.15
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can add the Send marker trait to an object that cannot be sent between threads safely, leading to memory corruption.