CVE-2026-46690

Summary

unbounded_spsc is an "unbounded" extension of bounded_spsc_queue. In versions 0.2.0 and prior, sender::send pointer-as-value transmute causes OOB read and fake-Arc drop under TX/RX race. At time of publication, there are no publicly available patches.

Affected Software

VendorProductVersion RangeStatus
spearmanunbounded-spsc<= 0.2.0affected

Weaknesses

  • CWE-125: CWE-125: Out-of-bounds Read
  • CWE-415: CWE-415: Double Free
  • CWE-704: CWE-704: Incorrect Type Conversion or Cast
  • CWE-787: CWE-787: Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

Additional References

References