CVE-2020-35903: Out of bounds read in dync

August 25, 2021 (updated June 13, 2023)

VecCopy::data is created as a Vec of u8 but can be used to store and retrieve elements of different types leading to misaligned access.

The issue was resolved in v0.5.0 by replacing data being stored by Vec with a custom managed pointer. Elements are now stored and retrieved using types with proper alignment corresponding to original types.

References

github.com/advisories/GHSA-qxjq-v4wf-ppvh
github.com/elrnv/dync
github.com/elrnv/dync/issues/4
nvd.nist.gov/vuln/detail/CVE-2020-35903
rustsec.org/advisories/RUSTSEC-2020-0050.html

Detect and mitigate CVE-2020-35903 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →