rustsec/advisory-db
1
0
Fork 0
mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
advisory-db/crates/anon-vec/RUSTSEC-2025-0039.md
djc 2e45336771 Synchronize IDs (2025-10-28)
2025-10-28 07:02:18 +01:00

725 B
Raw Permalink Blame History 

[advisory]
id = "RUSTSEC-2025-0039"
package = "anon-vec"
date = "2025-05-06"
informational = "unsound"
url = "https://github.com/RylanYancey/anon-vec"
categories = ["memory-corruption"]
aliases = ["GHSA-pr59-jjr4-gcf6"]

[affected.functions]
"anon_vec::AnonVec::get_ref" = ["<= 0.1.1"]
"anon_vec::AnonVec::get_mut" = ["<= 0.1.1"]
"anon_vec::AnonVec::remove_get" = ["<= 0.1.1"]

[versions]
patched = []
unaffected = []

Lack of sufficient checks in public API

The following functions in the anon-vec crate are unsound due to insufficient checks on their arguments::

  • AnonVec::get_ref()
  • AnonVec::get_mut()
  • AnonVec::remove_get()

The crate was built as a learning project and is not being maintained.