mirror of
https://github.com/OMGeeky/advisory-db.git
synced 2026-02-23 15:38:27 +01:00
Unaligned read in users crate (#1776)
This commit is contained in:
David Tolnay
GitHub
26
crates/users/RUSTSEC-0000-0000.md
Normal file
26
crates/users/RUSTSEC-0000-0000.md
Normal file
@@ -0,0 +1,26 @@
|
|||||||
|
```toml
|
||||||
|
[advisory]
|
||||||
|
id = "RUSTSEC-0000-0000"
|
||||||
|
package = "users"
|
||||||
|
date = "2023-09-10"
|
||||||
|
url = "https://github.com/ogham/rust-users/issues/55"
|
||||||
|
informational = "unsound"
|
||||||
|
keywords = ["unaligned-read"]
|
||||||
|
|
||||||
|
[versions]
|
||||||
|
patched = []
|
||||||
|
```
|
||||||
|
|
||||||
|
# Unaligned read of `*const *const c_char` pointer
|
||||||
|
|
||||||
|
Affected versions dereference a potentially unaligned pointer. The pointer is
|
||||||
|
commonly unaligned in practice, resulting in undefined behavior.
|
||||||
|
|
||||||
|
In some build modes, this is observable as a panic followed by abort. In other
|
||||||
|
build modes the UB may manifest in some other way, including the possibility of
|
||||||
|
working correctly in some architectures.
|
||||||
|
|
||||||
|
The crate is not currently maintained, so a patched version is not available.
|
||||||
|
|
||||||
|
## Recommended alternatives
|
||||||
|
- [`sysinfo`](https://crates.io/crates/sysinfo)
|
||||||
Reference in New Issue
Block a user