N/A

CVSS Score

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-rhfx-m35p-ff5j

GHSA-rhfx-m35p-ff5j: `IterMut` violates Stacked Borrows by invalidating internal pointer

Affected versions of this crate contain a soundness issue in the IterMut iterator implementation. The IterMut::next and IterMut::next_back methods temporarily create an exclusive reference to the key when dereferencing the internal node pointer.

This invalidates the shared pointer held by the internal HashMap, violating Stacked Borrows rules.

(GitHub Advisory)

Miggo Vulnerability Database

→

GHSA-rhfx-m35p-ff5j

GHSA-rhfx-m35p-ff5j:

N/A

CVSS Score

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
lru	rust	>= 0.9.0, < 0.16.3	0.16.3

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the IterMut iterator of the lru crate. The next and next_back methods were implemented in a way that created a temporary mutable (exclusive) reference to an item's key while iterating. According to Rust's borrowing rules (specifically Stacked Borrows), creating an exclusive reference invalidates any other existing shared references to the same data. The internal HashMap used by the LRU cache held such a shared reference. When IterMut::next or IterMut::next_back was called, this shared reference was invalidated, but the HashMap was unaware of this. Subsequent operations on the cache could then use this invalid pointer, leading to undefined behavior. The fix, as seen in commit b9bca3492d75139097df3b018b6abdf5825ee868, was to change the creation of the reference from a mutable &mut to a shared &, thus avoiding the violation of the borrowing rules.

Vulnerable functions

IterMut::next

src/lib.rs

The `IterMut::next` function created a mutable (exclusive) reference to the key. This violates Rust's borrowing rules by invalidating a shared pointer to the same data held by the internal HashMap, leading to a soundness issue and potential undefined behavior.

IterMut::next_back

src/lib.rs

The `IterMut::next_back` function created a mutable (exclusive) reference to the key. This violates Rust's borrowing rules by invalidating a shared pointer to the same data held by the internal HashMap, leading to a soundness issue and potential undefined behavior.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

N/A

-

Basic Information

Basic Information

Concerned about an active attack path?

GHSA-rhfx-m35p-ff5j: `IterMut` violates Stacked Borrows by invalidating internal pointer

GHSA-rhfx-m35p-ff5j:

N/A

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

GHSA-rhfx-m35p-ff5j: `IterMut` violates Stacked Borrows by invalidating internal pointer

N/A

N/A

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Basic Information

Basic Information

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI