- Reported
-
- Issued
-
- Package
-
binary_vec_io
(crates.io)
- Type
-
INFO
Unsound
- Categories
-
- Keywords
-
#buffer-overflow
#soundness
- References
-
- Patched
-
no patched versions
- Affected Functions
- Version
binary_vec_io::binary_read_to_ref-
binary_vec_io::binary_write_from_ref-
Description
Safe functions accept a single &T or &mut T but multiply by n to create slices extending beyond allocated memory when n > 1.
These functions use from_raw_parts to create slices larger than the underlying allocation, violating memory safety.
The binary_vec_io repository is archived and unmaintained.
Advisory available under CC0-1.0
license.