Affected version of this crate had implementation of From<&mut AsciiStr>
for &mut [u8]
and &mut str
. This can result in out-of-bounds array indexing in safe code.
The flaw was corrected in commit 8a6c779 by removing those impls.
{ "nvd_published_at": null, "cwe_ids": [], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2023-02-28T20:30:10Z" }