RUSTSEC-2019-0016: chttp: Use-after-free in buffer conversion implementation

Description

The From implementation for Vec was not properly implemented, returning a vector backed by freed memory. This could lead to memory corruption or be exploited to cause undefined behavior.

A fix was published in version 0.1.3.

More Info

https://github.com/sagebind/isahc/issues/2

Patched Versions

Unaffected Versions