RUSTSEC-2020-0111

may_queue's Queue lacks Send/Sync bound for its Send/Sync trait.

Issued
Package
may_queue (crates.io)
Type
Vulnerability
Categories
  • memory-corruption
  • thread-safety
Aliases
Details
https://github.com/Xudong-Huang/may/issues/88
Patched
no patched versions
Keywords
  • concurrency

Description

Affected versions of may_queue implements Send/Sync for its Queue type without restricting it to Sendable types and Syncable types.

This allows non-Sync types such as Cell to be shared across threads leading to undefined behavior and memory corruption in concurrent programs.

More