Rust Spin Crate RwLock Mutual Exclusion Violation Vulnerability

Rust Spin Crate RwLock Mutual Exclusion Violation Vulnerability

CVE-2019-16137 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion.

Learn more about our Web Application Penetration Testing UK.