RUSTSEC-2020-0041: Multiple soundness issues in Chunk and InlineArray #3323

github-actions · 2020-10-24T00:20:03Z

Multiple soundness issues in Chunk and InlineArray

Chunk:

Array size is not checked when constructed with unit() and pair().
Array size is not checked when constructed with From<InlineArray<A, T>>.
Clone and insert_from are not panic-safe; A panicking iterator causes memory safety issues with them.

InlineArray:

See advisory page for additional details.

The text was updated successfully, but these errors were encountered:

D4nte · 2020-10-24T09:38:10Z

Do we even have this dependency?

thomaseizinger · 2020-10-27T22:08:12Z

Probably a transient one. You can find out with cargo tree!

D4nte · 2020-10-30T03:29:56Z

I did check cargo lock before asking, I guess I did not check correctly. It comes from sentry.

github-actions · 2020-11-29T04:02:46Z

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

github-actions bot added the no-activity label Nov 29, 2020

github-actions bot closed this as completed Dec 6, 2020

Provide feedback