GHSA-pfp7-vxgr-83pw

Source

https://github.com/advisories/GHSA-pfp7-vxgr-83pw

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/09/GHSA-pfp7-vxgr-83pw/GHSA-pfp7-vxgr-83pw.json

JSON Data

https://api.test.osv.dev/v1/vulns/GHSA-pfp7-vxgr-83pw

Published

2025-09-09T15:23:43Z

Modified

2025-09-09T15:23:43Z

Severity

8.8 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:L/SI:L/SA:L CVSS Calculator

Summary

toodee is vulnerable to Heap Buffer Overflow through its DrainCol Destructor

Details

An off-by-one error in the DrainCol::drop destructor could cause an unsafe memory copy operation to exceed the bounds of the associated vector.

The error was related to the size of the data being copied in one of the ptr::copy invocations inside the destructor.

When removing the first column from a TooDee object, the DrainCol return object could cause a heap buffer overflow vulnerability when it is dropped.

The issue was fixed in commit e6e16d5 by reducing the copied size by one.

Database specific

{
    "github_reviewed": true,
    "severity": "HIGH",
    "nvd_published_at": null,
    "cwe_ids": [
        "CWE-122"
    ],
    "github_reviewed_at": "2025-09-09T15:23:43Z"
}

References

Affected packages

crates.io / toodee

Package

Name: toodee; View open source insights on deps.dev
Purl: pkg:cargo/toodee

Affected ranges

Type: SEMVER
Events: Introduced

0.2.0

Fixed

0.6.0