CVE-2021-28876 : In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls __iterator_get

In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls __iterator_get_unchecked() more than once for the same index when the underlying iterator panics (in certain conditions). This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait.

Published 2021-04-11 20:15:13

Updated 2022-11-03 19:38:55

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2021-28876

Probability of exploitation activity in the next 30 days: 0.21%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 59 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2021-28876

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
5.3	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N	3.9	1.4	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: Low Availability: None

CWE ids for CVE-2021-28876

CWE-755 Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles an exceptional condition.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-28876

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZG65GUW6Z2CYOQHF7T3TB5CZKIX6ZJE/

[SECURITY] Fedora 33 Update: rust-1.51.0-3.fc33 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/202210-09

Rust: Multiple Vulnerabilities (GLSA 202210-09) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TFUO3URYCO73D2Q4WYJBWAMJWGGVXQO4/

[SECURITY] Fedora 32 Update: rust-1.51.0-3.fc32 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url
https://github.com/rust-lang/rust/pull/81741

Increment `self.index` before calling `Iterator::self.a.__iterator_ge… by sdroege · Pull Request #81741 · rust-lang/rust · GitHub
Patch;Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CZ337CM4GFJLRDFVQCGC7J25V65JXOG5/

[SECURITY] Fedora 34 Update: rust-1.51.0-3.fc34 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url
https://github.com/rust-lang/rust/issues/81740

Soundness issue in `Zip::next()` specialization · Issue #81740 · rust-lang/rust · GitHub
Exploit;Issue Tracking;Third Party Advisory

Products affected by CVE-2021-28876

Fedoraproject » Fedora » Version: 32
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 33
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 34
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
Matching versions
Rust-lang » Rust
Versions before (<) 1.52.0
cpe:2.3:a:rust-lang:rust:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2021-28876

Exploit prediction scoring system (EPSS) score for CVE-2021-28876

CVSS scores for CVE-2021-28876

CWE ids for CVE-2021-28876

References for CVE-2021-28876

Products affected by CVE-2021-28876