Lucene search
RustsecRUSTSEC-2020-0009HistoryApr 11, 2020 - 12:00 p.m.
`read_scalar` and `read_scalar_at` allow transmuting values without `unsafe` blocks
2020-04-1112:00:00
rustsec.org
15
0.001 Low
EPSS
Percentile
39.2%
The read_scalar and read_scalar_at functions are unsound
because they allow transmuting values without unsafe blocks.
The following example shows how to create a dangling reference:
fn main() {
#[derive(Copy, Clone, PartialEq, Debug)]
struct S(&'static str);
impl flatbuffers::EndianScalar for S {
fn to_little_endian(self) -> Self { self }
fn from_little_endian(self) -> Self { self }
}
println!("{:?}", flatbuffers::read_scalar::<s>(&[1; std::mem::size_of::<s>()]));
}
| CPE | Name | Operator | Version |
|---|---|---|---|
| flatbuffers | ge | 0.4.0 | |
| flatbuffers | lt | 2.0.0 |
Related
nvd
nvd
CVE-2020-35864
2020-12-31 10:15:15
osv
osv
CVE-2020-35864
2020-12-31 10:15:15
`read_scalar` and `read_scalar_at` allow transmuting values without `unsafe` blocks
2020-04-11 12:00:00
Dangling reference in flatbuffers
2021-08-25 20:47:36
cve
cve
CVE-2020-35864
2020-12-31 10:15:15
prion
prion
Design/Logic Flaw
2020-12-31 10:15:00
alpinelinux
alpinelinux
CVE-2020-35864
2020-12-31 10:15:15
cvelist
cvelist
CVE-2020-35864
2020-12-31 08:29:31
github
github
Dangling reference in flatbuffers
2021-08-25 20:47:36