OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-13 21:18:11 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added patch to "fix" vulnerability. (#866)

Browse Source 
* patch note

* added patch version
This commit is contained in:
Ken Reed
2021-04-06 09:43:11 -04:00
committed by GitHub
parent c71cfec8c3
commit abdfc42fea
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
crates/reorder/RUSTSEC-2021-0050.md
View File

@@ -7,7 +7,7 @@ url = "https://github.com/tiby312/reorder/issues/1"
keywords = ["memory-corruption", "out-of-bounds"] keywords = ["memory-corruption", "out-of-bounds"]
[versions] [versions]
patched = [] patched = [">= 1.1.0"]
``` ```
# swap_index can write out of bounds and return uninitialized memory # swap_index can write out of bounds and return uninitialized memory
@@ -26,3 +26,11 @@ As noted by the Rust documentation, [`len()`](https://doc.rust-lang.org/std/iter
and `size_hint()` are primarily meant for optimization and incorrect values and `size_hint()` are primarily meant for optimization and incorrect values
from their implementations should not lead to memory safety violations. from their implementations should not lead to memory safety violations.
# Patch
A new version crate was pushed that marks this function as unsafe.
reorder = "1.1.0"
Previous versions have also been yanked from crates.io.