CVE-2020-36323

API soundness issue in join() implementation of [Borrow<str>]

Reported

December 23, 2020

Issued

July 6, 2021

Package

std

Type

Vulnerability

Categories

memory-exposure

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36323

Patched

>=1.52.0

Unaffected

<1.28.0

Description

In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized bytes to be exposed (or the program to crash) if the borrowed string changes after its length is checked.

Advisory available under CC0-1.0 license.