Name of the Vulnerable Software and Affected Versions: nalgebra versions 0.11.0 through 0.16.13

Description: The issue arises from the Deserialize implementation for VecStorage, which failed to maintain the invariant that the number of elements must equal nrows * ncols. This could allow memory access beyond the allocation of the vector when deserializing specially crafted inputs.

Recommendations: For versions 0.11.0 through 0.16.13, update to a version that includes the fix from commit 5bff536, which returns an error during deserialization if the number of elements does not exactly match the expected size.