Home > Vulnerability Database > WS-2019-0500

Mend.io Vulnerability Database

WS-2019-0500

Date: June 6, 2019

Attempting to call grow on a spilled SmallVec with a value equal to the current capacity causes it to free the existing data. This performs a double free immediately and may lead to use-after-free on subsequent accesses to the SmallVec contents. An attacker that controls the value passed to grow may exploit this flaw to obtain memory contents or gain remote code execution.

Language: RUST

Severity Score

5.5

Related Resources (2)

Url: https://github.com/servo/rust-smallvec/commit/4ba0d0f689440963e38b8adbe7fc2cabc6e573d5

Url: https://www.mend.io/vulnerability-database/WS-2019-0500

Severity Score

5.5

Weakness Type (CWE)

Code

CWE-17

Double Free

CWE-415

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

WS-2019-0500

Date: June 6, 2019

Language: RUST

Severity Score

Related Resources (2)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?