OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-23 15:38:27 +01:00
Code Issues Packages Projects Releases Wiki Activity

Report data race and memory safety issue in appendix

Browse Source
This commit is contained in:
Ammar Askar
2021-03-29 11:12:33 -07:00
parent ca8a60b7be
commit 4b209813ab
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
crates/appendix/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,23 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
package = "appendix"
date = "2020-11-15"
url = "https://github.com/krl/appendix/issues/6"
categories = ["memory-corruption", "thread-safety"]
[versions]
patched = []
```
# Data race and memory safety issue in `Index`
The `appendix` crate implements a key-value mapping data structure called
`Index<K, V>` that is stored on disk. The crate allows for any type to inhabit
the generic `K` and `V` type parameters and implements Send and Sync for them
unconditionally.
Using a type that is not marked as `Send` or `Sync` with `Index` can allow it
to be used across multiple threads leading to data races. Additionally using
reference types for the keys or values will lead to the segmentation faults
in the crate's code.