RUSTSEC-2018-0011

Enum repr causing potential memory corruption

Reported

December 18, 2018

Issued

October 1, 2020 (last modified: June 13, 2023)

Package

arrayfire (crates.io)

Type

Vulnerability

Categories

memory-corruption

Keywords

#enum #repr

Aliases

References

https://github.com/arrayfire/arrayfire-rust/pull/177

CVSS Score

9.8 CRITICAL

CVSS Details

Attack vector: Network
Attack complexity: Low
Privileges required: None
User interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Patched

>=3.6.0

Unaffected

<=3.5.0

Affected Architectures

x86_64

Affected OSes

windows

Description

The attribute repr() added to enums to be compatible with C-FFI caused memory corruption on MSVC toolchain.

arrayfire crates <= version 3.5.0 do not have this issue when used with Rust versions 1.27 or earlier. The issue only started to appear since Rust version 1.28.

The issue seems to be interlinked with which version of Rust is being used.

The issue was fixed in crate 3.6.0.

Advisory available under CC0-1.0 license.