CVE-2025-4574

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions: crossbeam-channel (affected versions not specified)

Description: The issue is related to a race condition in the internal Channel type's Drop method in the crossbeam-channel rust crate. This could lead to a double-free, resulting in memory corruption.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

AZL-61830

AZL-61835

AZL-61839

AZL-61845

AZL-61848

AZL-61855

BDU:2025-10949

CVE-2025-4574

GHSA-PG9F-39PC-QF8G

GHSA-W443-5H3J-JQCP

OPENSUSE-SU-2025:15550-1

OPENSUSE-SU-2025:15551-1

OPENSUSE-SU-2025_01591-1

OPENSUSE-SU-2026:20060-1

RUSTSEC-2025-0024

SUSE-SU-2025:01591-1

SUSE-SU-2026:20096-1

TROVE-2025-013

Affected Products

Suse

Crossbeam-Channel

CVE-2025-4574

Weakness Enumeration

Related Identifiers

Affected Products

References · 47