Multiple functions can cause double-frees

push_cloned can drop uninitialized memory or double free on panic

Multiple memory safety issues in insert_row

SliceDeque::drain_filter can double drop an element if the predicate panics

through and through_and causes a double free if the map function panics

move_elements can double-free objects on panic

insert_slice_clone can double drop if Clone panics.

insert_many can drop elements twice on panic

EventList's From conversions can double drop on panic.

Double free when calling sys_info::disk_info from multiple threads

HeaderMap::Drain API is unsound

Matrix::zip_elements causes double free

Double-free and use-after-free in SmallVec::grow()