mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-15 22:04:38 +01:00

Files

Alexis Mousset 84c633df9c Update aliases from GHSA OSV export (#1693 )

2023-06-13 15:10:24 +02:00

884 B

Raw Blame History

[advisory]
id = "RUSTSEC-2022-0012"
package = "arrow2"
date = "2022-03-04"
url = "https://github.com/jorgecarleitao/arrow2/issues/880"
categories = ["memory-corruption"]
aliases = ["GHSA-5j8w-r7g8-5472"]

[versions]
patched = [">= 0.7.1, < 0.8", ">= 0.8.2, < 0.9", ">= 0.9.2, < 0.10", ">= 0.10.0"]

Arrow2 allows double free in `safe` code

The struct Ffi_ArrowArray implements #derive(Clone) that is inconsistent with its custom implementation of Drop, resulting in a double free when cloned.

Cloning this struct in safe results in a segmentation fault, which is unsound.

This derive was removed from this struct. All users are advised to either:

bump the patch version of this crate (for versions v0.7,v0.8,v0.9), or
migrate to a more recent version of the crate (when using <0.7).

Doing so elimitates this vulnerability (code no longer compiles).

884 B Raw Blame History

Arrow2 allows double free in safe code

884 B

Raw Blame History

Arrow2 allows double free in `safe` code