CVE-2021-26956: Arbitrary return types in xcb

August 25, 2021 (updated June 13, 2023)

The function xcb::xproto::GetPropertyReply::value() returns a slice of type T where T is an unconstrained type parameter. The raw bytes received from the X11 server are interpreted as the requested type. The users of the xcb crate are advised to only call this function with the intended types. These are u8, u16, and u32.

This issue is tracked here: https://github.com/rust-x-bindings/rust-xcb/issues/95

References

github.com/RustSec/advisory-db/issues/653
github.com/advisories/GHSA-mp6r-fgw2-rxfx
github.com/rtbo/rust-xcb
github.com/rust-x-bindings/rust-xcb/issues/95
nvd.nist.gov/vuln/detail/CVE-2021-26956
rustsec.org/advisories/RUSTSEC-2021-0019.html

Code Behaviors & Features

Detect and mitigate CVE-2021-26956 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →