RUSTSEC-2026-0157

See a problem?
Please try reporting it to the source first.

Source

https://rustsec.org/advisories/RUSTSEC-2026-0157

Import Source

https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2026-0157.json

JSON Data

https://api.test.osv.dev/v1/vulns/RUSTSEC-2026-0157

Published

2026-06-01T12:00:00Z

Modified

2026-06-03T10:45:05.531340809Z

Summary

Several memory corruption issues via safe APIs

Details

Several soundness violations exist in the Rust bindings for MetaCall, indicatively:

MetaCallException::Clone: Clone is dangerous because it creates a second Rust object that still points to the same foreign MetaCall value, but does not actually own or keep that value alive. value is shallow copied and leak=true does not guarantee safety; Clone does not free the MetaCall value, but it still stores the same raw pointer. If the original is dropped, the Clone can retain a dangling pointer.

MetaCallException::new_raw: is a safe function that accepts arbitrary raw pointer and dereferences C memory. This function is only correct if the caller gives it a valid, owned MetaCall value that must be destroyed by this wrapper. The method should be internal and not exposed to the public API or be declared as unsafe and be correctly documented.

Same issues exist in MetaCallThrowable::Clone, MetaCallThrowable::new_raw, MetaCallClass::Clone, MetaCallClass::new_raw, MetaCallFuture::Clone, MetaCallFuture::new_raw, MetaCallPointer::Clone, MetaCallPointer::new_raw, MetaCallFunction::Clone, MetaCallFunction::new_raw, MetaCallObject::Clone, and MetaCallObject::new_raw.

All issues can be triggered through safe public APIs.

Database specific

{
    "license": "CC0-1.0"
}

References

Affected packages

crates.io / metacall

Package

Name: metacall; View open source insights on deps.dev
Purl: pkg:cargo/metacall

Affected ranges

Type: SEMVER
Events: Introduced

0.0.0-0

Ecosystem specific

{
    "affected_functions": null,
    "affects": {
        "os": [],
        "functions": [],
        "arch": []
    }
}