{"id":"RUSTSEC-2020-0105","summary":"Update unsound DrainFilter and RString::retain","details":"Affected versions of this crate contained code from the Rust standard library that contained soundness bugs rust-lang/rust#60977 (double drop) & rust-lang/rust#78498 (create invalid utf-8 string).\n\nThe flaw was corrected in v0.9.1 by making a similar fix to the one made in the Rust standard library.","aliases":["CVE-2020-36212","CVE-2020-36213","GHSA-vq23-5h4f-vwpv","GHSA-wqxc-qrq4-w5v4"],"modified":"2023-11-08T04:03:41.840994Z","published":"2020-12-21T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/abi_stable"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2020-0105.html"},{"type":"REPORT","url":"https://github.com/rodrimati1992/abi_stable_crates/issues/44"}],"affected":[{"package":{"name":"abi_stable","ecosystem":"crates.io","purl":"pkg:cargo/abi_stable"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"},{"fixed":"0.9.1"}]}],"ecosystem_specific":{"affected_functions":null,"affects":{"os":[],"arch":[],"functions":[]}},"database_specific":{"cvss":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","categories":["memory-corruption"],"source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2020-0105.json","informational":null}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}