CVE-2022-36086 linked_list_allocator vulnerable to out-of-bound writes on `Heap` initialization and `Heap::extend`

linkedlistallocator is an allocator usable for nostd systems. Prior to version 0.10.2, the heap initialization methods were missing a minimum size check for the given heap size argument. This could lead to out-of-bound writes when a heap was initialized with a size smaller than 3 sizeof:: because...

CVE-2022-36086

CVE-2022-36086 relates to the Rust crate linked_list_allocator (no_std). Prior to 0.10.2, heap initialization methods could perform out-of-bounds writes when the heap size was too small (less than 3 × size_of::) due to metadata writes, affecting Heap::new, Heap::init, Heap::init_from_slice, Locke...