Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries. The following packages have been upgraded to a later upstream version: rust . Security Fix: * rust: optimization for joining strings can cause uninitialized bytes to be exposed * rust: heap-based buffer overflow in read_to_end because it does not validate the return value from Read in an unsafe context * rust: panic safety issue in Zip implementation * rust: memory safety violation in Zip implementation for nested iter::Zips * rust: memory safety violation in Zip implementation when next_back and next are used together * rust: integer overflow in the Zip implementation can lead to a buffer overflow * rust: double free in Vec::from_iter function if freeing the element panics For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. For information on usage, see Using Rust Toolset linked in the References section.