ProjectEulerRust
ProjectEulerRust copied to clipboard
Published
20 hours ago •
gifnksm
gifnksm
RUSTSEC-2024-0357: `MemBio::get_buf` has undefined behavior with empty buffers
| Details | |
|---|---|
| Package | openssl |
| Version | 0.10.64 |
| URL | https://github.com/sfackler/rust-openssl/pull/2266 |
| Patched Versions | >=0.10.66 |
Previously, MemBio::get_buf called slice::from_raw_parts with a null-pointer, which violates the functions invariants, leading to undefined behavior. In debug builds this would produce an assertion failure. This is now fixed.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}