CVE-2024-27284

See a problem?

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-27284

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-27284.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-27284

Aliases

Published

2024-02-29T01:44:19Z

Modified

2024-06-19T02:33:52.294147Z

Summary

[none]

Details

cassandra-rs is a Cassandra (CQL) driver for Rust. Code that attempts to use an item (e.g., a row) returned by an iterator after the iterator has advanced to the next item will be accessing freed memory and experience undefined behaviour. The problem has been fixed in version 3.0.0.

References

Affected packages

Git / github.com/cassandra-rs/cassandra-rs

Affected ranges

Type: GIT
Repo: https://github.com/cassandra-rs/cassandra-rs
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ae054dc8044eac9c2c7ae2b1ab154b53ca7f8df7

Affected versions

0.*

0.10.0

0.10.1

0.10.2

0.11.0

0.12.0

0.13.0

0.13.1

0.13.2

0.14.0

0.14.1

0.15.0

0.15.1

0.16.0

0.17.0

0.17.1

0.17.2

0.6.0

0.6.1

0.6.10

0.6.2

0.6.3

0.6.4

0.6.5

0.6.6

0.6.7

0.8.0

0.8.1

0.8.2

1.*

1.0.0

1.1.0

1.2.0

2.*

2.0.0

2.0.1