CVE-2020-36471

Description

An issue was discovered in the generator crate before 0.7.0 for Rust. It does not ensure that a function (for yielding values) has Send bounds.

Affected packages (3)

• crates.io/generatorfrom 0, < 0.7.0
• crates.io/generator>= 0.0.0-0, < 0.7.0
• Debian/rust-generatorfrom 0

CVSS scores

References (8)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-36471
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-36471
• PATCHhttps://crates.io/crates/generator
• PATCHhttps://github.com/Xudong-Huang/generator-rs
• WEBhttps://github.com/Xudong-Huang/generator-rs/commit/f7d120a3b724d06a7b623d0a4306acf8f78cb4f0
• WEBhttps://github.com/Xudong-Huang/generator-rs/issues/27
• WEBhttps://raw.githubusercontent.com/rustsec/advisory-db/main/crates/generator/RUSTSEC-2020-0151.md
• WEBhttps://rustsec.org/advisories/RUSTSEC-2020-0151.html