Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI4OGgtNjk4Ny1nNzlm
Data races on syncpool
Affected versions of this crate unconditionally implements Send
for Bucket2
. This allows sending non-Send types to other threads.
This can lead to data races when non Send types like Cell<T>
or Rc<T>
are contained inside Bucket2
and sent across thread boundaries. The data races can potentially lead to memory corruption (as demonstrated in the PoC from the original report issue).
The flaw was corrected in commit 15b2828
by adding a T: Send
bound to the Send
impl of Bucket2<T>
.
JSON: https://advisories.ecosyste.ms/api/v1/advisories/MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI4OGgtNjk4Ny1nNzlm
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: over 2 years ago
Updated: 10 months ago
CVSS Score: 8.1
CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Identifiers: GHSA-r88h-6987-g79f
References:
- https://github.com/Chopinsky/byte_buffer/issues/2
- https://github.com/RustSec/advisory-db/blob/main/crates/syncpool/RUSTSEC-2020-0142.md
- https://rustsec.org/advisories/RUSTSEC-2020-0142.html
- https://github.com/Chopinsky/byte_buffer/commit/15b282877d1e576de2b337d8162bbf43ed1a0f2d
- https://github.com/advisories/GHSA-r88h-6987-g79f
Blast Radius: 0.0
Affected Packages
cargo:syncpool
Dependent packages: 3Dependent repositories: 1
Downloads: 4,926 total
Affected Version Ranges: < 0.1.6
Fixed in: 0.1.6
All affected versions: 0.1.0, 0.1.1, 0.1.2, 0.1.3, 0.1.4, 0.1.5
All unaffected versions: 0.1.6