OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-15 22:04:38 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
938076e0e0ef538cd44cd338e98b5dabc24fa1c2
advisory-db/crates/http/RUSTSEC-2019-0034.md
Alexis Mousset 84c633df9c Update aliases from GHSA OSV export (#1693)
2023-06-13 15:10:24 +02:00

27 lines
851 B
Markdown
Raw Blame History

```toml
[advisory]
id = "RUSTSEC-2019-0034"
package = "http"
aliases = ["CVE-2019-25009", "GHSA-6rhx-hqxm-8p36"]
cvss = "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
categories = ["memory-corruption"]
date = "2019-11-16"
keywords = ["memory-safety", "double-free", "unsound"]
[affected.functions]
"http::header::HeaderMap::drain" = ["< 0.1.20"]
[versions]
patched = [">= 0.1.20"]
```
# HeaderMap::Drain API is unsound
Affected versions of this crate incorrectly used raw pointer,
which introduced unsoundness in its public safe API.
[Failing to drop the Drain struct causes double-free](https://github.com/hyperium/http/issues/354),
and [it is possible to violate Rust's alias rule and cause data race with Drain's Iterator implementation](https://github.com/hyperium/http/issues/355).
The flaw was corrected in 0.1.20 release of `http` crate.
Reference in New Issue View Git Blame Copy Permalink