logo

Database

Inappropriate coding practices In array-queue

Description

use-after-free vulnerability in Rust array-queue An issue was discovered in the array-queue crate through 2020-09-26 for Rust. A pop_back() call may lead to a use-after-free.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2020-359002. NVD-2020-359003. OSV-2020-359004. GCVE-2020-35900

References

1. https://github.com/raviqqe/array-queue/issues/22. https://rustsec.org/advisories/RUSTSEC-2020-0047.html

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.