Vulnerabilities > Rust Lang

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-14	CVE-2020-36323	Use of Externally-Controlled Format String vulnerability in multiple products In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized bytes to be exposed (or the program to crash) if the borrowed string changes after its length is checked. network low complexity rust-lang fedoraproject CWE-134	8.2
2021-04-14	CVE-2018-25008	Improper Synchronization vulnerability in Rust-Lang Rust In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::get_mut method. network high complexity rust-lang CWE-662	5.9
2021-04-14	CVE-2017-20004	Race Condition vulnerability in Rust-Lang Rust In the standard library in Rust before 1.19.0, there is a synchronization problem in the MutexGuard object. network high complexity rust-lang CWE-362	5.9
2021-04-11	CVE-2021-28879	Integer Overflow or Wraparound vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. network low complexity rust-lang fedoraproject CWE-190 critical	9.8
2021-04-11	CVE-2021-28878	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are used together. network low complexity rust-lang fedoraproject CWE-119	7.5
2021-04-11	CVE-2021-28877	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Rust-Lang Rust In the standard library in Rust before 1.51.0, the Zip implementation calls __iterator_get_unchecked() for the same index more than once when nested. network low complexity rust-lang CWE-119	7.5
2021-04-11	CVE-2021-28876	Improper Handling of Exceptional Conditions vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. network low complexity rust-lang fedoraproject CWE-755	5.3
2021-04-11	CVE-2021-28875	Unchecked Return Value vulnerability in Rust-Lang Rust In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. network low complexity rust-lang CWE-252	7.5
2021-04-11	CVE-2020-36318	Use After Free vulnerability in Rust-Lang Rust 1.48.0 In the standard library in Rust before 1.49.0, VecDeque::make_contiguous has a bug that pops the same element more than once under certain condition. network low complexity rust-lang CWE-416 critical	9.8
2021-04-11	CVE-2020-36317	Out-of-bounds Write vulnerability in Rust-Lang Rust In the standard library in Rust before 1.49.0, String::retain() function has a panic safety problem. network low complexity rust-lang CWE-787	7.5

Vulnerabilities > Rust Lang {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Rust Lang"}]}

Vulnerabilities > Rust Lang