ksj1230 opened a new issue, #9899: URL: https://github.com/apache/arrow-rs/issues/9899
## Description This issue was previously reported privately and is now being disclosed following coordination with maintainers. `ArrayData::slice()` computes `offset + length` without overflow checking. When the sum wraps, the bounds check may pass, leading to an inconsistent internal state. This can result in a potential out-of-bounds read via safe Rust APIs. ## Fix See PR #9813 Reported by Sungjin Kim (@ksj1230) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
