There's also a format string vulnerability that wouldn't exist in Rust and which C turns into privilege escalation instead of aborting.