RUSTSEC-2023-0056
See a problem?- Source
- https://rustsec.org/advisories/RUSTSEC-2023-0056
- Import Source
- https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2023-0056.json
- JSON Data
- https://api.osv.dev/v1/vulns/RUSTSEC-2023-0056
- Aliases
- Published
- 2023-09-01T12:00:00Z
- Modified
- 2023-11-08T04:13:24.188980Z
- Severity
-
- 2.5 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- Default functions in VolatileMemory trait lack bounds checks, potentially leading to out-of-bounds memory accesses
- Details
-
An issue was discovered in the default implementations of the
VolatileMemory::{get_atomic_ref, aligned_as_ref, aligned_as_mut, get_ref, get_array_ref}trait functions, which allows out-of-bounds memory access if theVolatileMemory::get_slicefunction returns aVolatileSlicewhose length is less than the function’scountargument. No implementations ofget_sliceprovided invm_memoryare affected. Users of customVolatileMemoryimplementations may be impacted if the custom implementation does not adhere toget_slice's documentation.The issue started in version 0.1.0 but was fixed in version 0.12.2 by inserting a check that verifies that the
VolatileSlicereturned byget_sliceis of the correct length. - References
Affected packages
crates.io / vm-memory
Package
- Name
- vm-memory
- View open source insights on deps.dev
- Purl
- pkg:cargo/vm-memory
Ecosystem specific
{
"affected_functions": null,
"affects": {
"os": [],
"functions": [
"vm_memory::volatile_memory::VolatileMemory::aligned_as_mut",
"vm_memory::volatile_memory::VolatileMemory::aligned_as_ref",
"vm_memory::volatile_memory::VolatileMemory::get_array_ref",
"vm_memory::volatile_memory::VolatileMemory::get_atomic_ref",
"vm_memory::volatile_memory::VolatileMemory::get_ref"
],
"arch": []
}
}