Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-4574

In crossbeam-channel rust crate, the internal `Channel` type's `Drop` method has a race condition which could, in some circumstances, lead to a double-free that could result in memory corruption.

Published

2025-05-13T22:15:25.143

Last Modified

2025-05-16T14:43:56.797

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-415

Affected Vendors & Products

References

https://access.redhat.com/security/cve/CVE-2025-4574 ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=2358890 ([email protected])
https://github.com/crossbeam-rs/crossbeam/pull/1187 ([email protected])