Ecosyste.ms: Advisories

Security Advisories: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0cnctOG01cS02NDUz

Out of bounds access in rgb

Affected versions of rgb crate allow viewing and modifying data of any type T wrapped in RGB as bytes, and do not correctly constrain RGB and other wrapper structures to the types for which it is safe to do so.

Safety violation possible for a type wrapped in RGB and similar wrapper structures:

• If T contains padding, viewing it as bytes may lead to exposure of contents of uninitialized memory.
• If T contains a pointer, modifying it as bytes may lead to dereferencing of arbitrary pointers.
• Any safety and/or validity invariants for T may be violated.

The issue was resolved by requiring all types wrapped in structures provided by RGB crate to implement an unsafe marker trait.

Permalink: https://github.com/advisories/GHSA-g4rw-8m5q-6453
JSON: https://advisories.ecosyste.ms/api/v1/advisories/MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc0cnctOG01cS02NDUz
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Critical
Classification: General
Published: over 2 years ago
Updated: 11 months ago

CVSS Score: 9.1
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Identifiers: GHSA-g4rw-8m5q-6453, CVE-2020-25016
References:

• https://nvd.nist.gov/vuln/detail/CVE-2020-25016
• https://github.com/kornelski/rust-rgb/issues/35
• https://rustsec.org/advisories/RUSTSEC-2020-0029.html
• https://github.com/advisories/GHSA-g4rw-8m5q-6453

Repository: https://github.com/kornelski/rust-rgb
Blast Radius: 30.0

Affected Packages