Rafael
Hi there, I am crazy about MATE. When I tried to put a [sample C code with UAF vulnerabilities (Link attached)](https://github.com/yuawn/NTU-Computer-Security/blob/d6af31d7b71304ff6f44c8faa454815783923035/week3/src/uaf.c), MATE showed nothing and just an empty page in...
Hi, I found some potential unsoundness in safe method `read_next_value`: https://github.com/38/d4-format/blob/f8c008732679afa0524863a6d4890be0c96dc0f0/d4/src/ssio/view.rs#L177-L185 In line 184, the code will transmute type of `&u8` to `&u32` which will create a misaligned pointer, and...
### The source of unsoundness Hi, I am wondering why the warning of alignment was suppressed here: https://github.com/benfred/py-spy/blob/492b41c07c26c6edbe061da942c8dae41d86091e/src/python_data_access.rs#L27-L31 `bytes` comes from the `copy` method of `remoteprocess::ProcessMemory`, which would copy and...
### The source of unsoundness https://github.com/gfx-rs/gfx/blob/bc77309afdb0829605982370a3e17382c5968071/src/backend/gl/src/queue.rs#L185-L189 We consider that `queue::Queue::get` is unsound because the program tried to cast `u8` slice to `f32/f64/i32` and created a unaligned pointer. The unaligned pointer...
Hi, I am the security research from [SunLab](https://sunlab-gmu.github.io/). We are running our tools on open-source repositories and found the following function could be unsound. ### The source of unsoundness https://github.com/sciter-sdk/rust-sciter/blob/789013a5353826b681c896eef489a450ece84c9c/src/video.rs#L476-L479...
### The source of unsoundness Hi, we are the researchers from [Sun Security Lab](https://sunlab-gmu.github.io/). When we run our internal bug detectors through the crates.io, we found that your crate might...
### The source of unsoundness https://github.com/shawnscode/crayon/blob/48d4e879996e2502e0faaf36e4dbcebfca9961b0/src/utils/data_buf.rs#L26-L31 Hi, I think these two functions might include unsound implementation. They both allow users to pass arbitrary types and cast to `u8` type. To...
### The source of unsoundness https://github.com/amethyst/rendy/blob/8e3054a075b545bc1b030fa0d81c62a0b33d3740/core/src/casts.rs#L16-L20 `cast_slice` would cast any type to byte slice which is unsound. e.g., If type `T` contains padding bytes, read the returned byte slice would...
### The source of unsoundness Hi, we consider that casting from `sa_family` to `c_int` would break the alignment requirement because the first one is aligned to 2 bytes while the...