CVE-2021-29940Double Free in Project Through

CWE-415Double Free5 documents4 sources
Severity
9.8CRITICALNVD
EPSS
0.5%
top 33.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Through Project Through
Timeline
PublishedApr 1
Latest updateAug 25

Description

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free (in through and through_and) upon a panic of the map function.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDthrough_project/through2021-02-18
crates.iothrough_project/through0.1.0+1

🔴Vulnerability Details

4
GHSA
Double free in through2021-08-25
OSV
Double free in through2021-08-25
CVEList
CVE-2021-29940: An issue was discovered in the through crate through 2021-02-18 for Rust2021-04-01
OSV
`through` and `through_and` causes a double free if the map function panics2021-02-18
CVE-2021-29940 — Double Free in Through Project Through | cvebase