Skip to content

RUSTSEC-2022-0002: Unsoundness in dashmap references #49

New issue
New issue
Open
Open
RUSTSEC-2022-0002: Unsoundness in dashmap references#49
Labels
cause::indirect dependencyThis issue is caused/concerns a indirect dependency of GitArena (dependency of a dependency)status::investigatingtype::security
@github-actions

Description

@github-actions
github-actions
bot
opened on Jan 25, 2022

Unsoundness in dashmap references

Details
Package dashmap
Version 5.0.0
URL xacrimon/dashmap#167
Date 2022-01-10
Unaffected versions <5.0.0

Reference returned by some methods of Ref (and similar types) may outlive the Ref and escape the lock.
This causes undefined behavior and may result in a segfault.

More information in dashmap#167 issue.

See advisory page for additional details.

Metadata

Metadata

Assignees

No one assigned

    Labels

    cause::indirect dependencyThis issue is caused/concerns a indirect dependency of GitArena (dependency of a dependency)status::investigatingtype::security

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions