Double Free
CVE-2020-35891
Summary
An issue was discovered in the ordnung crate through 2020-09-03 for Rust. compact::Vec violates memory safety via a remove() double free.
- LOW
- NETWORK
- NONE
- NONE
- NONE
- PARTIAL
CWE-415 - Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
References
Advisory Timeline
- Published
