OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-27 06:29:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add advisory for using impure constants in array-macro (#1224)

Browse Source
This commit is contained in:
Konrad Borowski
2022-04-27 19:55:44 +02:00
committed by GitHub
parent b2ba503c74
commit c29b239a56
1 changed files with 21 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
crates/array-macro/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,21 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
package = "array-macro"
date = "2022-04-27"
url = "https://gitlab.com/KonradBorowski/array-macro/-/issues/5"
categories = ["code-execution", "memory-corruption", "memory-exposure"]
informational = "unsound"
[versions]
patched = [">= 2.1.2"]
unaffected = ["< 2.1.0"]
```
# `array!` macro is unsound when its length is impure constant
Affected versions of this crate did substitute the array length provided by an user at compile-time multiple times.
When an impure constant expression is passed as an array length (such as a result of an impure procedural macro), this can result in the initialization of an array with uninitialized types, which in turn can allow an attacker to execute arbitrary code.
The flaw was corrected in commit [d5b63f72](https://gitlab.com/KonradBorowski/array-macro/-/commit/d5b63f72090f3809c21ac28f9cfd84f12559bf7d) by making sure that array length is substituted just once.