Issued

January 1, 2021

Package

cache (crates.io)

Type

Unsound

Categories

• memory-corruption

Aliases

• CVE-2021-25903

Details

https://github.com/krl/cache/issues/2

Patched

no patched versions

Keywords

• soundness

Description

Affected versions of this crate dereference a raw pointer that can be modified without using unsafe code.

More

• Advisory History
• Edit Advisory