Reported

November 10, 2020

Issued

January 20, 2021 (last modified: June 13, 2023)

Package

hashconsing (crates.io)

Type

Vulnerability

Categories

• memory-corruption
• thread-safety

Keywords

#concurrency

Aliases

• CVE-2020-36215
• GHSA-rw2c-c256-3r53

References

• https://github.com/AdrienChampion/hashconsing/issues/1

CVSS Score

7.5 HIGH

CVSS Details

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality Impact

None

Integrity Impact

None

Availability Impact

High

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Patched

• >=1.1.0

Description

Affected versions of hashconsing implements Send/Sync for its HConsed type without restricting it to Sendable types and Syncable types.

This allows non-Sync types such as Cell to be shared across threads leading to undefined behavior and memory corruption in concurrent programs.

Advisory available under CC0-1.0 license.