Reported

January 26, 2021

Issued

March 26, 2021 (last modified: June 13, 2023)

Package

insert_many (crates.io)

Type

Vulnerability

Categories

• memory-corruption

Keywords

#memory-safety #double-free

Aliases

• CVE-2021-29933
• GHSA-29hg-r7c7-54fr

References

• https://github.com/rphmeier/insert_many/issues/1

CVSS Score

7.5 HIGH

CVSS Details

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality Impact

None

Integrity Impact

None

Availability Impact

High

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Patched

no patched versions

Description

Affected versions of insert_many used ptr::copy to move over items in a vector to make space before inserting, duplicating their ownership. It then iterated over a provided Iterator to insert the new items.

If the iterator's .next() method panics then the vector would drop the same elements twice.

Advisory available under CC0-1.0 license.