You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Lru crate has two functions for getting an iterator. Both iterators give
references to key and value. Calling specific functions, like pop(), will remove
and free the value, and but it's still possible to access the reference of value
which is already dropped causing use after free.
Resolution is to upgrade to version >= 0.7.1
The text was updated successfully, but these errors were encountered:
In the rust package,
lru
version 0.6.6 has a security vulnerability.See crate issue
= ID: RUSTSEC-2021-0130
= Advisory: https://rustsec.org/advisories/RUSTSEC-2021-0130
= Lru crate has use after free vulnerability.
Resolution is to upgrade to version >= 0.7.1
The text was updated successfully, but these errors were encountered: