GHSA-pfp7-vxgr-83pw: toodee is vulnerable to Heap Buffer Overflow through its DrainCol Destructor

September 9, 2025

An off-by-one error in the DrainCol::drop destructor could cause an unsafe memory copy operation to exceed the bounds of the associated vector.

The error was related to the size of the data being copied in one of the ptr::copy invocations inside the destructor.

When removing the first column from a TooDee object, the DrainCol return object could cause a heap buffer overflow vulnerability when it is dropped.

The issue was fixed in commit e6e16d5 by reducing the copied size by one.

References

github.com/advisories/GHSA-pfp7-vxgr-83pw
github.com/antonmarsden/toodee
github.com/antonmarsden/toodee/commit/e6e16d5a97e6258ffbedbae1bde65b45c60f242f
github.com/antonmarsden/toodee/issues/26
rustsec.org/advisories/RUSTSEC-2025-0062.html

Code Behaviors & Features

Detect and mitigate GHSA-pfp7-vxgr-83pw with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →