RUSTSEC-2026-0008

ADVISORY - rustsec

Summary

if we dereference the Buf struct right after calling new() or default() on Buf struct, it passes Null Pointer to the unsafe function slice::from_raw_parts. Based on the safety section documentation of function, data must be non-null and aligned even for zero-length slices or slices of ZSTs. Thus, passing Null Pointer will lead to undefined behavior.

Common Weakness Enumeration (CWE)

Impacted images

Advisories

RustSec

CREATED

2 days ago

UPDATED

4 hours ago

ADVISORY IDRUSTSEC-2026-0008⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
git2	cargo	-	-	<0.20.4	0.20.4

Severity and metrics

No CVSS data available from this advisory.