OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-19 01:46:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
d8701fad2d40aeca8e8564692f14a8d7c30a5136
advisory-db/crates/zeroize_derive/RUSTSEC-2021-0115.md
puzzlewolf 380869a5c1 Update patched version of zeroize_derive. (#1074) 
zeroize_derive backported the fix to the 1.1 branch and released it as
version 1.1.1 (https://github.com/iqlusioninc/crates/pull/881).
2021-10-12 09:24:09 -06:00

585 B
Raw Blame History 

[advisory]
id = "RUSTSEC-2021-0115"
package = "zeroize_derive"
date = "2021-09-24"
url = "https://github.com/iqlusioninc/crates/issues/876"

[versions]
patched = [">= 1.1.1"]

#[zeroize(drop)] doesn't implement Drop for enums

Affected versions of this crate did not implement Drop when #[zeroize(drop)] was used on an enum.

This can result in memory not being zeroed out after dropping it, which is exactly what is intended when adding this attribute.

The flaw was corrected in version 1.2 and #[zeroize(drop)] on enums now properly implements Drop.