{"id":"RUSTSEC-2020-0046","summary":"bespoke Cell implementation allows obtaining several mutable references to the same data","details":"The custom implementation of a Cell primitive in the affected versions of this crate\ndoes not keep track of mutable references to the underlying data.\n\nThis allows obtaining several mutable references to the same object\nwhich may result in arbitrary memory corruption, most likely use-after-free.\n\nThe flaw was corrected by switching from a bespoke `Cell\u003cT\u003e` implementation to `Rc\u003cRefCell\u003cT\u003e\u003e`.","aliases":["CVE-2020-35899","GHSA-whc7-5p35-4ww2"],"modified":"2023-11-08T04:03:38.239916Z","published":"2020-01-08T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/actix-service"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2020-0046.html"},{"type":"WEB","url":"https://github.com/actix/actix-net/pull/158"}],"affected":[{"package":{"name":"actix-service","ecosystem":"crates.io","purl":"pkg:cargo/actix-service"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"},{"fixed":"1.0.6"}]}],"ecosystem_specific":{"affects":{"functions":[],"os":[],"arch":[]},"affected_functions":null},"database_specific":{"categories":["memory-corruption"],"source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2020-0046.json","cvss":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","informational":"unsound"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}