История изменений

Исправление MOPKOBKA, 14.03.23 00:53 (текущая версия) :

Возьму только один пример,

CVE-2021-43620 An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::from_ptr on a pointer to the string buffer, the string is terminated at the first ‘\0’ byte, which might not be the end of the string.

Функция помечена как unsafe. Проще отследить части unsafe кода, чем весь код когда он весь unsafe.

Исходная версия MOPKOBKA, 14.03.23 00:52:

Возьму только один пример,

CVE-2021-43620 An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::from_ptr on a pointer to the string buffer, the string is terminated at the first ‘\0’ byte, which might not be the end of the string.

Функция помечена как unsafe.