crates.io package
rocket
pkg:cargo/rocket
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-29935 | — | < 0.4.7 | 0.4.7 | Apr 1, 2021 | An issue was discovered in the rocket crate before 0.4.7 for Rust. uri::Formatter can have a use-after-free if a user-provided function panics. | ||
| CVE-2020-35882 | — | >= 0.4.0, < 0.4.5 | 0.4.5 | Dec 31, 2020 | An issue was discovered in the rocket crate before 0.4.5 for Rust. LocalRequest::clone creates more than one mutable references to the same object, possibly causing a data race. |
- CVE-2021-29935Apr 1, 2021affected < 0.4.7fixed 0.4.7
An issue was discovered in the rocket crate before 0.4.7 for Rust. uri::Formatter can have a use-after-free if a user-provided function panics.
- CVE-2020-35882Dec 31, 2020affected >= 0.4.0, < 0.4.5fixed 0.4.5
An issue was discovered in the rocket crate before 0.4.5 for Rust. LocalRequest::clone creates more than one mutable references to the same object, possibly causing a data race.