CVE-2020-36468: Non-atomic writes in cgc
(updated )
Multiple soundness issues in <code>Ptr</code> in cgc
Affected versions of this crate have the following issues:
Ptr
implementsSend
andSync
for all types, this can lead to data races by sending non-thread safe types across threads.Ptr::get
violates mutable alias rules by returning multiple mutable references to the same object.Ptr::write
uses non-atomic writes to the underlying pointer. This means that when used across threads it can lead to data races.
References
Detect and mitigate CVE-2020-36468 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →