ksj1230 opened a new issue, #9900: URL: https://github.com/apache/arrow-rs/issues/9900
## Description This issue was previously reported privately and is now being disclosed following coordination with maintainers. ArrayData validation performs length-based calculations without overflow checking. In certain cases, overflow may bypass validation checks and allow construction of invalid internal states. This can result in a potential out-of-bounds read via safe Rust APIs. ## Fix See PR #9816 Reported by Sungjin Kim (@ksj1230) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
