add out-of-bounds memory access in compact_arena < 0.4.0 (#137)

2025-12-28 23:36:15 +01:00 · 2019-09-01 19:54:20 +02:00
parent c8c41f939a
commit 7b363b785a
1 changed files with 19 additions and 0 deletions
--- a/crates/compact_arena/RUSTSEC-0000-0000.toml
+++ b/crates/compact_arena/RUSTSEC-0000-0000.toml
@@ -0,0 +1,19 @@
+[advisory]
+id = "RUSTSEC-0000-0000"
+package = "compact_arena"
+date = "2019-05-21"
+title = "Flaw in generativity allows out-of-bounds access"
+description = """
+Affected versions of this crate did not properly implement the generativity,
+because the invariant lifetimes were not necessarily `drop`ped.
+
+This allows an attacker to mix up two arenas, using indices created from one 
+arena with another one. This might lead to an out-of-bounds read or write 
+access into the memory reserved for the arena.
+ 
+The flaw was corrected by implementing generativity correctly in version 0.4.0.
+"""
+patched_versions = [">= 0.4.0"]
+url = "https://github.com/llogiq/compact_arena/issues/22"
+keywords = ["memory-corruption", "uninitialized-memory"]
+affected_functions = ["compact_arena::SmallArena::new"]