mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-23 15:38:27 +01:00

Files

Alexis Mousset 84c633df9c Update aliases from GHSA OSV export (#1693 )

2023-06-13 15:10:24 +02:00

1.2 KiB

Raw Blame History

[advisory]
id = "RUSTSEC-2022-0040"
package = "owning_ref"
date = "2022-01-26"
url = "https://github.com/noamtashma/owning-ref-unsoundness"
references = ["https://github.com/Kimundi/owning-ref-rs/issues/49", "https://github.com/Kimundi/owning-ref-rs/issues/61", "https://github.com/Kimundi/owning-ref-rs/issues/71", "https://github.com/Kimundi/owning-ref-rs/issues/77"]
categories = ["memory-corruption"]
aliases = ["GHSA-9qxh-258v-666c"]

[versions]
patched = []

Multiple soundness issues in `owning_ref`

OwningRef::map_with_owner is unsound and may result in a use-after-free.
OwningRef::map is unsound and may result in a use-after-free.
OwningRefMut::as_owner and OwningRefMut::as_owner_mut are unsound and may result in a use-after-free.
The crate violates Rust's aliasing rules, which may cause miscompilations on recent compilers that emit the LLVM noalias attribute.

No patched versions are available at this time. While a pull request with some fixes is outstanding, the maintainer appears to be unresponsive.

1.2 KiB Raw Blame History

Multiple soundness issues in owning_ref

1.2 KiB

Raw Blame History

Multiple soundness issues in `owning_ref`