OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-24 04:15:12 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add std CVE (#869)

Browse Source
This commit is contained in:
Yechan Bae
2021-04-13 17:22:28 -04:00
committed by GitHub
parent ce4db769c2
commit 22b59ea8a3
8 changed files with 128 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
rust/std/CVE-2015-20001.md Normal file
View File

@@ -0,0 +1,16 @@
```toml
[advisory]
id = "CVE-2015-20001"
package = "std"
categories = ["memory-corruption"]
date = "2015-05-27"
url = "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20001"
[versions]
patched = [">= 1.2.0"]
unaffected = ["< 1.0.0"]
```
# Panic safety violation in BinaryHeap
In the standard library in Rust before 1.2.0, BinaryHeap is not panic-safe. The binary heap is left in an inconsistent state when the comparison of generic elements inside sift_up or sift_down_range panics. This bug leads to a drop of zeroed memory as an arbitrary type, which can result in a memory safety violation.