6 matches found
CVE-2020-25791
The CVE-2020-25791 issue affects the Rust sized-chunks crate (up to version 0.6.2). The root cause is that the array size is not checked when constructing with unit() (and related constructors) in the Chunk implementation, leading to memory-safety concerns. The OSV/GHSA entries consolidate this a...
CVE-2020-25792
CVE-2020-25792 concerns the Rust crate sized-chunks up to version 0.6.2. The confirmed root cause is that in the Chunk implementation, the array size is not checked when constructed with pair(), and related vectors of issues show the same vulnerability surface in other constructors (e.g., From<...
CVE-2020-25796
The CVE-2020-25796 entry concerns the sized-chunks crate for Rust (up to version 0.6.2). Affected component: InlineArray/Chunk implementations that may generate unaligned references for types with large alignment requirements, exposing memory-safety risks. Additional issues reported: array size i...
CVE-2020-25795
CVE-2020-25795 concerns the sized-chunks crate (Rust) up to version 0.6.2, where the Chunk::insert_from path can trigger a memory-safety issue if a panic occurs. The CVE description explicitly ties the vulnerability to a panic during insertion, indicating memory-safety implications. Related OSV/G...
CVE-2020-25793
CVE-2020-25793 is a Rust vulnerability in the sized-chunks crate (up to v0.6.2). The issue arises in Chunk construction where the array size is not checked when created via From<InlineArray> (and variants such as unit()/pair() in InlineArray). This can lead to memory-safety concerns and rel...
CVE-2020-25794
The CVE-2020-25794 issue affects the sized-chunks crate (Rust) up to version 0.6.2. The root cause is a memory-safety flaw in Chunk.clone that can manifest when a panic occurs, with related reports noting that clone and insert_from are not panic-safe, and that array size checks are missing in var...