[Pkg-rust-maintainers] Bug#970186: rust-rand-core-0.3: Unaligned memory access resulting in undefined behavior
Moritz Mühlenhoff
jmm at inutil.org
Sat Jan 9 22:38:11 GMT 2021
severity 970186 grave
thanks
Am Sat, Sep 12, 2020 at 05:23:38PM +0200 schrieb Alexander Kjäll:
> Source: rust-rand-core-0.3
> Version: 0.3.0-2
> Severity: normal
> Tags: upstream, security
>
> Dear Maintainer,
>
>
> Versions under 0.4.2 violated alignment when casting byte slices to integer slices, resulting in undefined behavior.
>
> Advisory: https://rustsec.org/advisories/RUSTSEC-2019-0035.html
There are no reverse deps for rust-rand-core-0.3 and rust-rand-core is fixed, let's remove?
Cheers,
Moritz
More information about the Pkg-rust-maintainers
mailing list