crates.io package
internment
pkg:cargo/internment
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28037 | — | < 0.4.2 | 0.4.2 | Mar 5, 2021 | An issue was discovered in the internment crate before 0.4.2 for Rust. There is a data race that can cause memory corruption because of the unconditional implementation of Sync for Intern. | ||
| CVE-2020-35874 | — | >= 0.3.12, < 0.4.0 | 0.4.0 | Dec 31, 2020 | An issue was discovered in the internment crate through 2020-05-28 for Rust. ArcIntern::drop has a race condition and resultant use-after-free. |
- CVE-2021-28037Mar 5, 2021affected < 0.4.2fixed 0.4.2
An issue was discovered in the internment crate before 0.4.2 for Rust. There is a data race that can cause memory corruption because of the unconditional implementation of Sync for Intern.
- CVE-2020-35874Dec 31, 2020affected >= 0.3.12, < 0.4.0fixed 0.4.0
An issue was discovered in the internment crate through 2020-05-28 for Rust. ArcIntern::drop has a race condition and resultant use-after-free.