GHSA-x4mq-m75f-mx8m

Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-x4mq-m75f-mx8m/GHSA-x4mq-m75f-mx8m.json

Published

2022-06-17T00:30:33Z

Modified

2022-07-05T21:26:36Z

Details

Affected versions of this crate did not require event handlers to have Send bound despite there being no guarantee of them being called on any particular thread, which can potentially lead to data races and undefined behavior.

The flaw was corrected in commit afe3252 by adding Send bounds.

References

• https://github.com/microsoft/windows-rs/issues/1409
• https://github.com/microsoft/windows-rs/commit/afe32525c22209aa8f632a0f4ad607863b51796a
• https://github.com/microsoft/windows-rs
• https://rustsec.org/advisories/RUSTSEC-2022-0008.html