QSearchQSearch

CVE-2026-46690

5.8 MEDIUM

unbounded_spsc is an "unbounded" extension of bounded_spsc_queue

Published: 2026-06-12 · Last updated: 2026-06-12

Severity and scoring

CVSS
5.8 MEDIUM
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
CWE
CWE-125, CWE-415, CWE-704, CWE-787

Description

unbounded_spsc is an "unbounded" extension of bounded_spsc_queue. In versions 0.2.0 and prior, sender::send pointer-as-value transmute causes OOB read and fake-Arc drop under TX/RX race. At time of publication, there are no publicly available patches.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-54413 driftregion iso14229 through 0.9.0 contains an integer underflow and downstream out-of-bounds read in the Handle_0x27_SecurityAccess() fu... (8.2 HIGH)
  • CVE-2026-54412 LiamBindle MQTT-C through version 1.1.6 contains a heap-based out-of-bounds read and integer underflow in the mqtt_unpack_publish_respons... (8.2 HIGH)
  • CVE-2026-54410 nanoMODBUS through v1.23.0 contains an off-by-one buffer overflow in the recv_msg_header() function of the Modbus/TCP server that allows ... (8.6 HIGH)
  • CVE-2026-6676 Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execu... (7.8 HIGH)
  • CVE-2025-9033 Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Co... (7.8 HIGH)