Reported

September 6, 2020

Issued

October 1, 2020 (last modified: June 13, 2023)

Package

sized-chunks (crates.io)

Type

Vulnerability

Aliases

• CVE-2020-25791
• CVE-2020-25792
• CVE-2020-25793
• CVE-2020-25794
• CVE-2020-25795
• CVE-2020-25796
• GHSA-64gv-qg2v-vxv6
• GHSA-9p9m-9xww-qjcx
• GHSA-fqpx-cq8x-9wp4
• GHSA-mp6f-p9gp-vpj9
• GHSA-rfgg-vccr-m46m
• GHSA-x54v-qxxr-93qc

References

• https://github.com/bodil/sized-chunks/issues/11

CVSS Score

7.5 HIGH

CVSS Details

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Patched

• >=0.6.3

Description

Chunk:

• Array size is not checked when constructed with unit() and pair().
• Array size is not checked when constructed with From<InlineArray<A, T>>.
• Clone and insert_from are not panic-safe; A panicking iterator causes memory safety issues with them.

InlineArray:

• Generates unaligned references for types with a large alignment requirement.

Advisory available under CC0-1.0 license.