Vulnerabilities > CVE-2020-25795 - Memory Leak vulnerability in Sized-Chunks Project Sized-Chunks

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

sized-chunks-project

CWE-401

NVD

Published: 2020-09-19

Updated: 2021-01-12

Summary

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, insert_from can have a memory-safety issue upon a panic.

Vulnerable Configurations

Part	Description	Count
Application	Sized-Chunks_Project Sized Chunks Project Sized Chunks 0.1.0 Sized Chunks Project Sized Chunks 0.1.1 Sized Chunks Project Sized Chunks 0.1.2 Sized Chunks Project Sized Chunks 0.1.3 Sized Chunks Project Sized Chunks 0.2.0 Sized Chunks Project Sized Chunks 0.2.1 Sized Chunks Project Sized Chunks 0.2.2 Sized Chunks Project Sized Chunks 0.3.0 Sized Chunks Project Sized Chunks 0.3.1 Sized Chunks Project Sized Chunks 0.3.2 Sized Chunks Project Sized Chunks 0.4.0 Sized Chunks Project Sized Chunks 0.5.0 Sized Chunks Project Sized Chunks 0.5.1 Sized Chunks Project Sized Chunks 0.5.2 Sized Chunks Project Sized Chunks 0.5.3 Sized Chunks Project Sized Chunks 0.6.0 Sized Chunks Project Sized Chunks 0.6.1 Sized Chunks Project Sized Chunks 0.6.2	18

Common Weakness Enumeration (CWE)

CWE-401 - Improper Release of Memory Before Removing Last Reference ('Memory Leak')

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References