advisory-db icon indicating copy to clipboard operation
advisory-db copied to clipboard
verified publisher icon rustsec

`parity-util-mem` soundness

Open pinkforest opened this issue 3 years ago • 0 comments

Came across while investigating this: https://github.com/rustsec/advisory-db/issues/1394

https://github.com/paritytech/parity-common/issues/364

Both Github repository and crates.io readme contains a big warning: https://github.com/paritytech/parity-common/tree/master/parity-util-mem https://crates.io/crates/parity-util-mem

@dvdplm would it be helpful to put out an informational = "unsound" ? on this to warn re: usage ?

We can mark it as patched in 0.6.1 so it doesn't warn there

Cheers

pinkforest avatar Aug 30 '22 20:08 pinkforest