rustsec/advisory-db
1
0
Fork 0
mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00
Code Issues Packages Projects Releases Wiki Activity

Assigned RUSTSEC-2023-0046 to cyfs-base (#1723)

Browse Source 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
This commit is contained in:
github-actions[bot]
2023-06-22 09:43:08 -06:00
committed by GitHub
parent a64182cf0f
commit 9cf72357c8
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.duplicate-id-guard
View File

@@ -1,3 +1,3 @@
This file causes merge conflicts if two ID assignment jobs run concurrently.
This prevents duplicate ID assignment due to a race between those jobs.
fc9a56a652912ce858d71ad16586ea424807c8ce3b81d0464d910b988412a30b -
aee1905cc6111a8085b4836e39124a2cc0f34e8106f07f116df13ee0057dc8e3 -

4
crates/cyfs-base/RUSTSEC-0000-0000.md → crates/cyfs-base/RUSTSEC-2023-0046.md
View File

@@ -1,6 +1,6 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
id = "RUSTSEC-2023-0046"
package = "cyfs-base"
date = "2023-06-15"
informational = "unsound"
@@ -12,4 +12,4 @@ patched = []
```
# Misaligned pointer dereference in `ChunkId::new`
The function `ChunkId::new` creates a misaligned pointer by casting mutable pointer of `u8` slice which has alignment 1 to the mutable pointer of `u32` which has alignment 4, and dereference the misaligned pointer leading UB, which should not be allowed in safe function.
The function `ChunkId::new` creates a misaligned pointer by casting mutable pointer of `u8` slice which has alignment 1 to the mutable pointer of `u32` which has alignment 4, and dereference the misaligned pointer leading UB, which should not be allowed in safe function.