Security Vulnerabilities - CVEs Published In 2020
An issue was discovered in the lock_api crate before 0.4.2 for Rust. A data race can occur because of MappedMutexGuard unsoundness.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-12-31
An issue was discovered in the lock_api crate before 0.4.2 for Rust. A data race can occur because of MappedRwLockReadGuard unsoundness.
CVSS Score
4.7
EPSS Score
0.0
Published
2020-12-31
An issue was discovered in the lock_api crate before 0.4.2 for Rust. A data race can occur because of MappedRwLockWriteGuard unsoundness.
CVSS Score
4.7
EPSS Score
0.0
Published
2020-12-31
An issue was discovered in the lock_api crate before 0.4.2 for Rust. A data race can occur because of RwLockReadGuard unsoundness.
CVSS Score
4.7
EPSS Score
0.0
Published
2020-12-31
An issue was discovered in the lock_api crate before 0.4.2 for Rust. A data race can occur because of RwLockWriteGuard unsoundness.
CVSS Score
4.7
EPSS Score
0.0
Published
2020-12-31
An issue was discovered in the futures-intrusive crate before 0.4.0 for Rust. GenericMutexGuard allows cross-thread data races of non-Sync types.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-12-31
An issue was discovered in the image crate before 0.23.12 for Rust. A Mutable reference has immutable provenance. (In the case of LLVM, the IR may be always correct.)
CVSS Score
5.5
EPSS Score
0.001
Published
2020-12-31
An issue was discovered in the pyo3 crate before 0.12.4 for Rust. There is a reference-counting error and use-after-free in From<Py<T>>.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-12-31
An issue was discovered in the branca crate before 0.10.0 for Rust. Decoding tokens (with invalid base62 data) can panic.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-12-31
An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-12-31