CVE-2020-35910

描述

An issue was discovered in the lock_api crate before 0.4.2 for Rust. A data race can occur because of MappedMutexGuard unsoundness.

受影響套件(8)

• crates.io/lock_apifrom 0, < 0.4.2
• crates.io/lock_apifrom 0, < 0.4.2
• crates.io/lock_apifrom 0, < 0.4.2
• crates.io/lock_apifrom 0, < 0.4.2
• crates.io/lock_apifrom 0, < 0.4.2
• crates.io/lock_api>= 0.0.0-0, < 0.4.2
• Debian/rust-lock-apifrom 0
• Debian/rust-lock-api-0.1from 0

CVSS 分數

參考連結(11)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-35910
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-35911
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-35912
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-35913
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-35914
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-35910
• PATCHhttps://crates.io/crates/lock_api
• PATCHhttps://github.com/Amanieu/parking_lot
• WEBhttps://github.com/Amanieu/parking_lot/commit/7de94f95f519d8281cb48457964065b463d26736
• WEBhttps://github.com/Amanieu/parking_lot/pull/262
• WEBhttps://rustsec.org/advisories/RUSTSEC-2020-0070.html