Affected versions of this crate switched the length and capacity arguments in the Vec::fromrawparts() constructor, which could lead to memory corruption or data leakage.
{ "nvd_published_at": null, "cwe_ids": [ "CWE-119" ], "severity": "CRITICAL", "github_reviewed": true, "github_reviewed_at": "2021-08-19T21:24:31Z" }