An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because there is an out-of-bounds read in xcb::xproto::change_property(), as demonstrated by a format=32 T=u8 situation where out-of-bounds bytes are sent to an X server.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| xcb(crates.io) | 0 | 1.0.0 | N/A |
CVSS Metrics
