CVE-2020-36211

Name of the Vulnerable Software and Affected Versions gfwx crate versions prior to 0.3.0

Description The issue arises from ImageChunkMut not having bounds on its Send trait or Sync trait, leading to potential data races and memory corruption. Specifically, ImageChunkMut<' , T> unconditionally implements Send and Sync, which can cause memory corruption or undefined behavior when non-thread-safe types are moved and referenced across thread boundaries.

Recommendations For versions prior to 0.3.0, update to version 0.3.0 or later to resolve the issue. As a temporary workaround, consider avoiding the use of ImageChunkMut across thread boundaries until the update is applied.