{"id":"RUSTSEC-2020-0131","summary":"Send/Sync bound needed on T  for Send/Sync impl of RcuCell\u003cT\u003e","details":"Affected versions of this crate unconditionally implement Send/Sync for `RcuCell\u003cT\u003e`.\nThis allows users to send `T: !Send` to other threads (while `T` enclosed within `RcuCell\u003cT\u003e`), and allows users to concurrently access `T: !Sync` by using the APIs of `RcuCell\u003cT\u003e` that provide access to `&T`.\n\nThis can result in memory corruption caused by data races.","aliases":["CVE-2020-36451","GHSA-686h-j8r8-wmfm"],"modified":"2023-11-08T04:03:45.643060Z","published":"2020-11-14T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/rcu_cell"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2020-0131.html"},{"type":"REPORT","url":"https://github.com/Xudong-Huang/rcu_cell/issues/3"}],"affected":[{"package":{"name":"rcu_cell","ecosystem":"crates.io","purl":"pkg:cargo/rcu_cell"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"}]}],"ecosystem_specific":{"affected_functions":null,"affects":{"functions":[],"arch":[],"os":[]}},"database_specific":{"categories":["memory-corruption","thread-safety"],"informational":null,"cvss":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2020-0131.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}