An issue was discovered in the nano_arena crate before 0.5.2 for Rust. There is an aliasing violation in split_at because two mutable references can exist for the same element, if Borrow<Idx> behaves in certain ways. This can have a resultant out-of-bounds write or use-after-free.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-03-05T08:40:02

Updated: 2024-08-03T21:33:17.226Z

Reserved: 2021-03-05T00:00:00

Link: CVE-2021-28032

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-03-05T09:15:14.097

Modified: 2024-11-21T05:59:00.567

Link: CVE-2021-28032

cve-icon Redhat

No data.