Vulnerabilities (CVE)

Filtered by vendor Servo Subscribe
Filtered by product Smallvec
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-25900 1 Servo 1 Smallvec 2024-11-21 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insert_many.
CVE-2019-15554 1 Servo 1 Smallvec 2024-11-21 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity.
CVE-2019-15551 1 Servo 1 Smallvec 2024-11-21 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is a double free for certain grow attempts with the current capacity.
CVE-2018-25023 1 Servo 1 Smallvec 2024-11-21 5.0 MEDIUM 7.5 HIGH
An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type.
CVE-2018-20991 1 Servo 1 Smallvec 2024-11-21 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the smallvec crate before 0.6.3 for Rust. The Iterator implementation mishandles destructors, leading to a double free.