An issue was discovered in the failure crate through 0.1.5 for Rust. It may introduce "compatibility hazards" in some applications, and has a type confusion flaw when downcasting. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: This may overlap CVE-2019-25010
References
Link | Resource |
---|---|
https://boats.gitlab.io/blog/post/failure-to-fehler/ | Exploit Third Party Advisory |
https://github.com/rust-lang-nursery/failure/issues/336 | Patch Third Party Advisory |
https://rustsec.org/advisories/RUSTSEC-2020-0036.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-09-14T18:15:48
Updated: 2024-06-04T17:12:16.003Z
Reserved: 2020-09-14T00:00:00
Link: CVE-2020-25575
JSON object: View
NVD Information
Status : Modified
Published: 2020-09-14T19:15:11.397
Modified: 2024-06-04T19:17:01.203
Link: CVE-2020-25575
JSON object: View
Redhat Information
No data.
CWE