Vulnerabilities > CVE-2021-45704 - Out-of-bounds Write vulnerability in Metrics-Util Project Metrics-Util
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An issue was discovered in the metrics-util crate before 0.7.0 for Rust. There is a data race and memory corruption because AtomicBucket<T> unconditionally implements the Send and Sync traits.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/metrics-util/RUSTSEC-2021-0113.md
- https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/metrics-util/RUSTSEC-2021-0113.md
- https://rustsec.org/advisories/RUSTSEC-2021-0113.html
- https://rustsec.org/advisories/RUSTSEC-2021-0113.html