Reported

December 9, 2020

Issued

January 30, 2021 (last modified: June 13, 2023)

Package

dces (crates.io)

Type

Vulnerability

Categories

• memory-corruption
• thread-safety

Keywords

#concurrency

Aliases

• CVE-2020-36459
• GHSA-hxw9-jxqw-jc8j

References

• https://gitlab.redox-os.org/redox-os/dces-rust/-/issues/8

CVSS Score

8.1 HIGH

CVSS Details

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality Impact

High

Integrity Impact

High

Availability Impact

High

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Patched

no patched versions

Description

The World type in dces is marked as Send without bounds on its EntityStore and ComponentStore.

This allows non-thread safe EntityStore and ComponentStores to be sent across threads and cause data races.

Advisory available under CC0-1.0 license.