OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-23 15:38:27 +01:00
Code Issues Packages Projects Releases Wiki Activity

Migrate all advisories to V2 format (closes #228)

Browse Source 
As announced in #228, this commit migrates all advisories to the new V2
format, which splits version information into a separate section, and
now has a structure which corresponds to the internal code structure of
the `rustsec` crate.

This is a breaking change for users of `cargo-audit` < 0.9, and anyone
who has written a 3rd party advisory format parser.
This commit is contained in:
Tony Arcieri
2020-03-01 10:42:21 -08:00
parent c54e93a581
commit 64c17acfe3
67 changed files with 325 additions and 223 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
crates/cookie/RUSTSEC-2017-0005.toml
View File

@@ -1,7 +1,6 @@
[advisory]
id = "RUSTSEC-2017-0005"
package = "cookie"
patched_versions = ["< 0.6.0", "^0.6.2", ">= 0.7.6"]
keywords = ["crash"]
url = "https://github.com/alexcrichton/cookie-rs/pull/86"
title = "Large cookie Max-Age values can cause a denial of service"
@@ -15,3 +14,6 @@ will panic if the value is greater than 2^64/1000 and less than or equal to
This flaw was corrected by explicitly checking for the `Max-Age` being in this
integer range and clamping the value to the maximum duration value.
"""
[versions]
patched = ["< 0.6.0", "^0.6.2", ">= 0.7.6"]