CVE-2019-16137

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-16137

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16137.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-16137

Aliases

Downstream

DEBIAN-CVE-2019-16137

Published

2019-09-09T12:15:10.647Z

Modified

2026-03-14T09:33:03.981615Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion.

References

https://rustsec.org/advisories/RUSTSEC-2019-0013.html

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16137.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "fixed": "0.5.2"
            }
        ]
    }
]