From edacddcfd60e477719d9fe7884cc987142e01f17 Mon Sep 17 00:00:00 2001
From: JOE1994 <joseph942010@gmail.com>
Date: Tue, 19 Jan 2021 21:00:16 -0500
Subject: [PATCH] Report 0105-basic_dsp_matrix to RustSec

---
 crates/basic_dsp_matrix/RUSTSEC-0000-0000.md | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 crates/basic_dsp_matrix/RUSTSEC-0000-0000.md

diff --git a/crates/basic_dsp_matrix/RUSTSEC-0000-0000.md b/crates/basic_dsp_matrix/RUSTSEC-0000-0000.md
new file mode 100644
index 0000000..85ef00b
--- /dev/null
+++ b/crates/basic_dsp_matrix/RUSTSEC-0000-0000.md
@@ -0,0 +1,17 @@
+```toml
+[advisory]
+id = "RUSTSEC-0000-0000"
+package = "basic_dsp_matrix"
+date = "2021-01-10"
+url = "https://github.com/liebharc/basic_dsp/issues/47"
+categories = ["memory-corruption"]
+
+[versions]
+patched = [">= 0.9.2"]
+```
+
+# panic safety issue in `impl TransformContent<S, D> for [S; (2|3|4)]`
+
+Affected versions of this crate did not guard against double drop while temporarily duplicating objects' ownership using `ptr::read()`. Upon panic in a user-provided function `conversion`, objects that are copied by `ptr::read()` are dropped twice, leading to memory corruption.
+
+The flaw was corrected in v0.9.2 by using `ManuallyDrop<T>` to enclose objects that are to be temporarily duplicated.