RUSTSEC-2024-0424

Unsound usages of core::slice::from_raw_parts_mut

Reported

December 19, 2024

Issued

December 22, 2024

Package

libafl (crates.io)

Type

INFO Unsound

Keywords

#align

References

https://github.com/AFLplusplus/LibAFL/issues/1526
https://github.com/AFLplusplus/LibAFL/pull/1530

Patched

>=0.11.2

Affected Functions

Version

libafl::observers::map::HitcountsMapObserver::post_exec

<0.11.2

Description

The library breaks the safety assumptions when using unsafe API slice::from_raw_parts_mut. The pointer passed to from_raw_parts_mut is misaligned by casting u8 to u16 raw pointer directly, which is unsound. The bug is patched by using align_offset, which could make sure the memory address is aligned to 2 bytes for u16.

This was patched in 0.11.2 in the commit.

Advisory available under CC0-1.0 license.