You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi there, we (Rust group @sslab-gatech) are scanning crates on crates.io for potential soundness bugs. We noticed that the bayer::ffi module contains functions intended to serve as C bindings:
However, these should probably be marked as unsafe or not be exposed publicly in the crate, otherwise it allows users to potentially cause memory safety issues from safe Rust by passing wrong raw pointers to the ffi functions.
The text was updated successfully, but these errors were encountered:
Hi there, we (Rust group @sslab-gatech) are scanning crates on crates.io for potential soundness bugs. We noticed that the
bayer::ffi
module contains functions intended to serve as C bindings:https://github.com/wangds/libbayer/blob/master/src/ffi.rs
However, these should probably be marked as
unsafe
or not be exposed publicly in the crate, otherwise it allows users to potentially cause memory safety issues from safe Rust by passing wrong raw pointers to the ffi functions.The text was updated successfully, but these errors were encountered: