|
199431
|
9.8 |
CRITICAL
Network
|
ozone_project
|
ozone
|
An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of the dropping of uninitialized memory.
|
CWE-119
CWE-908
Incorrect Access of Indexable Resource ('Range Error')
Use of Uninitialized Resource
|
CVE-2020-35878
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199432
|
9.8 |
CRITICAL
Network
|
ozone_project
|
ozone
|
An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of out-of-bounds access.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2020-35877
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199433
|
9.8 |
CRITICAL
Network
|
rio_project
|
rio
|
An issue was discovered in the rio crate through 2020-05-11 for Rust. A struct can be leaked, allowing attackers to obtain sensitive information, cause a use-after-free, or cause a data race.
|
CWE-416
CWE-772
Use After Free
Missing Release of Resource after Effective Lifetime
|
CVE-2020-35876
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199434
|
7.5 |
HIGH
Network
|
tokio
|
tokio-rustls
|
An issue was discovered in the tokio-rustls crate before 0.13.1 for Rust. Excessive memory usage may occur when data arrives quickly.
|
NVD-CWE-Other
|
CVE-2020-35875
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199435
|
8.1 |
HIGH
Network
|
internment_project
|
internment
|
An issue was discovered in the internment crate through 2020-05-28 for Rust. ArcIntern::drop has a race condition and resultant use-after-free.
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-35874
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199436
|
9.8 |
CRITICAL
Network
|
rusqlite_project
|
rusqlite
|
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because sessions.rs has a use-after-free.
|
CWE-416
Use After Free
|
CVE-2020-35873
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199437
|
9.8 |
CRITICAL
Network
|
rusqlite_project
|
rusqlite
|
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via the repr(Rust) type.
|
NVD-CWE-noinfo
|
CVE-2020-35872
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199438
|
8.1 |
HIGH
Network
|
rusqlite_project
|
rusqlite
|
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API data race.
|
CWE-362
Race Condition
|
CVE-2020-35871
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199439
|
9.8 |
CRITICAL
Network
|
rusqlite_project
|
rusqlite
|
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API use-after-free.
|
CWE-416
Use After Free
|
CVE-2020-35870
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199440
|
9.8 |
CRITICAL
Network
|
rusqlite_project
|
rusqlite
|
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because rusqlite::trace::log mishandles format strings.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2020-35869
|
2024-11-21 14:28 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
