N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-vgmh-mqm4-8j88

EPSS Score

CWE

CWE-416

Published

3/24/2025

Updated

3/24/2025

KEV Status

Technology

Rust

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-vgmh-mqm4-8j88

GHSA-vgmh-mqm4-8j88: pared Vulnerable to Use After Free in `Parc` and `Prc` Due to Missing Lifetime Constraints

Affected versions of this crate didn't provide sufficient lifetime constraints to conversion functions from alloc::sync::Arc and alloc::rc::Rc, which made it possible to create projections of these reference counted pointers. Unlike the original reference counted pointers, these projections could outlive original data's lifetimes.

This projected pointer could cause the original Arc's or Rc's Drop::drop to get called at a point where the original data was no longer valid, leading to a potential use after free.

The affected functions were

pared::prc::Prc::from_rc
pared::prc::Prc::project
pared::prc::Prc::try_from_rc
pared::sync::Parc::from_arc
pared::sync::Parc::project
pared::sync::Parc::try_from_arc

This flaw was fixed in 108f540ea8acb6073751a1aa386085c1cdc4fd1e by requiring that the type stored in the Arcs and Rcs passed to these functions contain T: 'static.

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-vgmh-mqm4-8j88

EPSS Score

CWE

CWE-416

Published

3/24/2025

Updated

3/24/2025

KEV Status

Technology

Rust

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
pared	rust

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from missing 'static lifetime constraints in conversion/projection functions. The commit diff shows these functions were modified to add T: 'static/U: 'static bounds. GitHub issue #2 demonstrates concrete UAF scenarios enabled by these missing constraints. The advisory explicitly lists these 6 functions as affected, and the patch confirms they required lifetime fixes to prevent projections outliving original data.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*****t** v*rsions o* t*is *r*t* *i*n't provi** su**i*i*nt li**tim* *onstr*ints to *onv*rsion *un*tions *rom `*llo*::syn*::*r*` *n* `*llo*::r*::R*`, w*i** m*** it possi*l* to *r**t* proj**tions o* t**s* r***r*n** *ount** point*rs. Unlik* t** ori*in*l

Reasoning

T** vuln*r**ility st*ms *rom missin* 'st*ti* li**tim* *onstr*ints in *onv*rsion/proj**tion *un*tions. T** *ommit *i** s*ows t**s* *un*tions w*r* mo*i*i** to *** T: 'st*ti*/U: 'st*ti* *oun*s. *it*u* issu* #* **monstr*t*s *on*r*t* U** s**n*rios *n**l**

N/A

Basic Information

Concerned about an active attack path?

GHSA-vgmh-mqm4-8j88: pared Vulnerable to Use After Free in `Parc` and `Prc` Due to Missing Lifetime Constraints

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI