CVE-2018-20996

Name of the Vulnerable Software and Affected Versions crossbeam versions prior to 0.4.1

Description The issue arises from destructor mishandling, leading to a double free when an element is popped from a queue. This occurs because crossbeam runs the destructor inside the epoch-based garbage collector, even after the element has been removed. The problem was resolved by wrapping elements inside queues in a ManuallyDrop.

Recommendations For versions prior to 0.4.1, update to version 0.4.1 or later to resolve the issue. As a temporary workaround, consider avoiding the use of queues in a way that could trigger the double free, until the update can be applied.