Wiz
Vulnerability DatabaseRUSTSEC-2025-0109

RUSTSEC-2025-0109
Rust vulnerability analysis and mitigation

Overview

The binary_vec_io crate contains critical unsound APIs in its implementation, specifically affecting functions that handle buffer operations. The vulnerability was discovered and reported on October 21, 2025, with the issue being confirmed and merged on October 22, 2025. The crate is currently archived and unmaintained (RustSec PR).

Technical details

The vulnerability affects two main functions: binary_read_to_ref(f: &mut File, p: &mut T, n: usize) and binary_write_from_ref(f: &mut File, p: &T, n: usize). These functions accept a single reference (&T or &mut T) but allow multiplication by n, which can lead to stack buffer overflow when n > 1. The issue stems from improper use of from_raw_parts with incorrect slice size calculations in the unsafe code blocks (RustSec PR).

Impact

The vulnerability can lead to stack-based buffer overflow conditions, potentially allowing attackers to manipulate memory beyond intended boundaries. This could result in program crashes or potential arbitrary code execution in systems using the affected functions (RustSec PR).

Mitigation and workarounds

The crate has been thoroughly deprecated and is no longer maintained. Users are advised to completely cease using any code from this repository and migrate to alternative solutions for binary vector I/O operations (RustSec PR).

Additional resources

SourceThis report was generated using AI

Related Rust vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2026-22863CRITICAL9.2
  • RustRust
  • deno
NoYesJan 15, 2026
CVE-2026-23519HIGH8.9
  • RustRust
  • cmov
NoYesJan 15, 2026
RUSTSEC-2026-0003HIGH8.9
  • RustRust
  • cmov
NoYesJan 14, 2026
CVE-2026-22864HIGH8.1
  • RustRust
  • deno
NoYesJan 15, 2026
CVE-2026-22782LOW2.9
  • RustRust
  • rustfs
NoYesJan 16, 2026

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo