RUSTSEC-2026-0204

ADVISORY - rustsec

Summary

Affected versions of fmt::Display dereference the underlying pointer. This causes a invalid pointer dereference e.g., when a pointer created with Atomic::null or Shared::null. fmt::Debug impls and pre-0.9 fmt::Display impls, which do not dereference pointers, are not affected by this issue.

Common Weakness Enumeration (CWE)


RustSec

CREATED

UPDATED

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY
PackageTypeOS NameOS VersionAffected RangesFix Versions
crossbeam-epochcargo-->=0.9.0,<0.9.200.9.20

Severity and metrics

No CVSS data available from this advisory.