/
DirectorySecurity Advisories
Sign In
Security Advisories

CGA-xmrp-787g-rp2r

Published

Last updated

https://images.chainguard.dev/security/CGA-xmrp-787g-rp2r
Package

wadm

RepositoryWolfi
Latest Update
Fixed
Fixed Version

0.21.0-r2

Aliases
  • GHSA-pg9f-39pc-qf8g

Severity

Unknown

Summary

crossbeam-channel Vulnerable to Double Free on Drop

Description

The internal Channel type's Drop method has a race which could, in some circumstances, lead to a double-free. This could result in memory corruption.

Quoting from the upstream description in merge request #1187:

The bug was introduced while fixing a memory leak, in upstream MR #1084, first published in 0.5.12.

The fix is in upstream MR #1187 and has been published in 0.5.15

References

Updates


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs