RUSTSEC-2020-0169 – multi_mut

Package

Manager: cargo
Name: multi_mut
Vulnerable Version: >=0.0.0-0

Severity

Level: Low

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

EPSS: N/A pctlN/A

Details

multi_mut is Unmaintained Last release was about 6 years ago. There is an outstanding [soundness issue](https://github.com/golddranks/multi_mut/issues/1). The maintainer has not responded for two years to the existing soundness issue. Rust compiler has enabled errors relating to LLVM noalias rules and may not compile anymore where as the old compiler versions had turned these off. The maintainer has stated: > I will take no responsibility of undefined behaviour possibly caused by this crate. This crate may or may not be suitable for use anymore given the outstanding issues.

Metadata

Created: 2020-02-07T12:00:00Z
Modified: 2024-12-04T12:55:45Z
Source: https://osv-vulnerabilities
CWE IDs: N/A
Alternative ID: N/A
Finding: F079
Auto approve: 1