OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-03 10:05:26 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #319 from Qwaz/rulinalg-201

Browse Source 
Security advisory for AtheMathmo/rulinalg#201
This commit is contained in:
Sergey "Shnatsel" Davidoff
2020-07-05 13:47:30 +02:00
committed by GitHub
parent c649f53838 49fcc50d2b
commit fb8d644b16
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
crates/rulinalg/RUSTSEC-0000-0000.toml Normal file
View File

@@ -0,0 +1,23 @@
[advisory]
id = "RUSTSEC-0000-0000"
package = "rulinalg"
date = "2020-02-11"
title = "Lifetime boundary for `raw_slice` and `raw_slice_mut` are incorrect"
url = "https://github.com/AtheMathmo/rulinalg/issues/201"
description = """
The affected version of `rulinalg` has incorrect lifetime boundary definitions
for `RowMut::raw_slice` and `RowMut::raw_slice_mut`. They do not conform with
Rust's borrowing rule and allows the user to create multiple mutable references
to the same location. This may result in unexpected calculation result and data
race if both references are used at the same time.
"""
[affected]
[affected.functions]
"rulinalg::matrix::RowMut::raw_slice" = [">= 0.4.0"]
"rulinalg::matrix::RowMut::raw_slice_mut" = [">= 0.4.0"]
[versions]
patched = []
unaffected = ["< 0.4.0"]