OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-20 10:31:01 +01:00
Code Issues Packages Projects Releases Wiki Activity

report misaligned pointer dereference in cyfs-base (#1718)

Browse Source
This commit is contained in:
Rafael
2023-06-22 11:42:06 -04:00
committed by GitHub
parent 76c37849b6
commit a64182cf0f
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
crates/cyfs-base/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,15 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
package = "cyfs-base"
date = "2023-06-15"
informational = "unsound"
url = "https://github.com/buckyos/CYFS/issues/275"
keywords = ["alignment", "unsound"]
[versions]
patched = []
```
# Misaligned pointer dereference in `ChunkId::new`
The function `ChunkId::new` creates a misaligned pointer by casting mutable pointer of `u8` slice which has alignment 1 to the mutable pointer of `u32` which has alignment 4, and dereference the misaligned pointer leading UB, which should not be allowed in safe function.