HistoryEditJSON (OSV)

RUSTSEC-2021-0116

BinaryArray does not perform bound checks on reading values and offsets

Reported
Issued
Package
arrow (crates.io)
Type
Vulnerability
Categories
Keywords
#buffer-overflow
Aliases
References
Patched
  • >=6.4.0

Description

BinaryArray performs insufficient validation on creation, which allows out-of-bounds reads in safe code.

Advisory available under CC0-1.0 license.