Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

vec_deque::Iter has unsound Debug implementation #53566

Closed
RalfJung opened this issue Aug 21, 2018 · 1 comment · Fixed by #53571
Closed

vec_deque::Iter has unsound Debug implementation #53566

RalfJung opened this issue Aug 21, 2018 · 1 comment · Fixed by #53571

Comments

@RalfJung
Copy link
Member

Found by @MaloJaffre: The following code causes UB (not observable through crashes, but still):

use std::collections::VecDeque;
fn main() {
    println!("{:?}", VecDeque::<u32>::new().iter());
}

This will create a VecDeque ring with capacity 8, then turn that into a slice for Iter, and then print that entire slice. Run it in Miri to see for yourself (Miri is in the "tools" menu).
@RalfJung RalfJung mentioned this issue Aug 21, 2018
Merged
@shepmaster shepmaster changed the title vec_deque::Iter has unsound Debig implementation vec_deque::Iter has unsound Debug implementation Aug 21, 2018
@oeb25 oeb25 mentioned this issue Aug 21, 2018
Closed
MaloJaffre added a commit to MaloJaffre/rust that referenced this issue Aug 22, 2018
@MaloJaffre
Fix unsoundness in VecDeque Debug impls
b85e4cc 
Fixes rust-lang#53566.
@MaloJaffre MaloJaffre mentioned this issue Aug 22, 2018
Merged
bors added a commit that referenced this issue Aug 23, 2018
@bors
Auto merge of #53571 - MaloJaffre:vecdeque-emergency, r=RalfJung
54d82d0 
Fix unsoundness for VecDeque

 See individual commit for more details.

r? @RalfJung.

Fixes #53566, fixes #53529
@memoryruins memoryruins mentioned this issue Aug 31, 2018
Merged
@Shnatsel Shnatsel mentioned this issue Jul 3, 2019
Merged
@nluedtke
Copy link

This was assigned CVE-2019-1010299.

@RalfJung RalfJung mentioned this issue May 30, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix unsoundness for VecDeque MaloJaffre/rust
2 participants
@RalfJung @nluedtke