OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-05 11:10:38 +01:00
Code Issues Packages Projects Releases Wiki Activity

Report 0051-syncpool to RustSec

Browse Source
This commit is contained in:
JOE1994
2021-01-23 22:51:33 -05:00
parent 0a8f5ce4b9
commit f51b0e27eb
1 changed files with 19 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
crates/syncpool/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,19 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
package = "syncpool"
date = "2020-11-29"
url = "https://github.com/Chopinsky/byte_buffer/issues/2"
categories = ["memory-corruption"]
[versions]
patched = []
```
# Send bound needed on T (for Send impl of `Bucket2`)
Affected versions of this crate unconditionally implements `Send` for `Bucket2`. This allows sending non-Send types to other threads.
This can lead to data races when non Send types like `Cell<T>` or `Rc<T>` are contained inside `Bucket2` and sent across thread boundaries. The data races can potentially lead to memory corruption (as demonstrated in the PoC from the original report issue).
The flaw was corrected in commit 15b2828 by adding a `T: Send` bound to the `Send` impl of `Bucket2<T>`.