GHSA-9hpw-r23r-xgm5: Data race in `Iter` and `IterMut`

June 17, 2022

In the affected version of this crate, {Iter, IterMut}::next used a weaker memory ordering when loading values than what was required, exposing a potential data race when iterating over a ThreadLocal’s values.

Crates using Iter::next, or IterMut::next are affected by this issue.

References

github.com/Amanieu/thread_local-rs
github.com/Amanieu/thread_local-rs/issues/33
github.com/advisories/GHSA-9hpw-r23r-xgm5
rustsec.org/advisories/RUSTSEC-2022-0006.html

Code Behaviors & Features

Detect and mitigate GHSA-9hpw-r23r-xgm5 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →