{"id":"RUSTSEC-2025-0109","summary":"Out-of-bounds memory access in binary_read_to_ref and binary_write_from_ref","details":"Safe functions accept a single `&T` or `&mut T` but multiply by `n` to create slices extending beyond allocated memory when `n \u003e 1`.\n\nThese functions use `from_raw_parts` to create slices larger than the underlying allocation, violating memory safety.\n\nThe binary_vec_io repository is archived and unmaintained.","aliases":["GHSA-wwxp-hxh6-8gf8"],"modified":"2025-10-28T06:29:26.662863Z","published":"2025-10-21T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/binary_vec_io"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2025-0109.html"},{"type":"WEB","url":"https://github.com/RustSec/advisory-db/pull/2428"}],"affected":[{"package":{"name":"binary_vec_io","ecosystem":"crates.io","purl":"pkg:cargo/binary_vec_io"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"}]}],"ecosystem_specific":{"affects":{"os":[],"functions":["binary_vec_io::binary_read_to_ref","binary_vec_io::binary_write_from_ref"],"arch":[]},"affected_functions":null},"database_specific":{"source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2025-0109.json","cvss":null,"informational":"unsound","categories":["memory-corruption"]}}],"schema_version":"1.7.3"}