Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ALAS2-2022-1816

Related Vulnerabilities: CVE-2020-36323   CVE-2021-28876   CVE-2021-28878   CVE-2021-28879   CVE-2021-31162  

In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized bytes to be exposed (or the program to crash) if the borrowed string changes after its length is checked. (CVE-2020-36323) In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls __iterator_get_unchecked() more than once for the same index when the underlying iterator panics (in certain conditions). This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. (CVE-2021-28876) In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are used together. This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. (CVE-2021-28878) In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer overflow when a consumed Zip iterator is used again. (CVE-2021-28879) In the standard library in Rust before 1.52.0, a double free can occur in the Vec::from_iter function if freeing the element panics. (CVE-2021-31162)

Source

ALAS2-2022-1816

Amazon Linux 2 Security Advisory: ALAS-2022-1816
Advisory Release Date: 2022-07-06 03:15 Pacific
Advisory Updated Date: 2022-07-14 22:26 Pacific
Severity: Medium
Issue Overview:

In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized bytes to be exposed (or the program to crash) if the borrowed string changes after its length is checked. (CVE-2020-36323)

In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls __iterator_get_unchecked() more than once for the same index when the underlying iterator panics (in certain conditions). This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. (CVE-2021-28876)

In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are used together. This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. (CVE-2021-28878)

In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer overflow when a consumed Zip iterator is used again. (CVE-2021-28879)

In the standard library in Rust before 1.52.0, a double free can occur in the Vec::from_iter function if freeing the element panics. (CVE-2021-31162)


Affected Packages:

rust


Issue Correction:
Run yum update rust to update your system.

New Packages:
aarch64:
    rust-1.56.1-1.amzn2.0.1.aarch64
    rust-std-static-1.56.1-1.amzn2.0.1.aarch64
    rust-doc-1.56.1-1.amzn2.0.1.aarch64
    cargo-1.56.1-1.amzn2.0.1.aarch64
    rustfmt-1.56.1-1.amzn2.0.1.aarch64
    rls-1.56.1-1.amzn2.0.1.aarch64
    clippy-1.56.1-1.amzn2.0.1.aarch64
    rust-analysis-1.56.1-1.amzn2.0.1.aarch64
    rust-debuginfo-1.56.1-1.amzn2.0.1.aarch64

noarch:
    rust-debugger-common-1.56.1-1.amzn2.0.1.noarch
    rust-gdb-1.56.1-1.amzn2.0.1.noarch
    cargo-doc-1.56.1-1.amzn2.0.1.noarch
    rust-src-1.56.1-1.amzn2.0.1.noarch

src:
    rust-1.56.1-1.amzn2.0.1.src

x86_64:
    rust-1.56.1-1.amzn2.0.1.x86_64
    rust-std-static-1.56.1-1.amzn2.0.1.x86_64
    rust-doc-1.56.1-1.amzn2.0.1.x86_64
    cargo-1.56.1-1.amzn2.0.1.x86_64
    rustfmt-1.56.1-1.amzn2.0.1.x86_64
    rls-1.56.1-1.amzn2.0.1.x86_64
    clippy-1.56.1-1.amzn2.0.1.x86_64
    rust-analysis-1.56.1-1.amzn2.0.1.x86_64
    rust-debuginfo-1.56.1-1.amzn2.0.1.x86_64

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started