HistoryEdit

RUSTSEC-2023-0015

Ascii allows out-of-bounds array indexing in safe code

Reported
Issued
Package
ascii (crates.io)
Type
INFO Unsound
Categories
Keywords
#ascii
Details
https://github.com/tomprogrammer/rust-ascii/issues/64
Patched
  • >=0.9.3
Unaffected
  • <=0.6.0

Description

Affected version of this crate had implementation of From<&mut AsciiStr> for &mut [u8] and &mut str. This can result in out-of-bounds array indexing in safe code.

The flaw was corrected in commit 8a6c779 by removing those impls.