OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-26 16:07:48 +01:00
Code Issues Packages Projects Releases Wiki Activity

add missing cve info to advisories (#1077)

Browse Source 
looks like RUSTSEC-2020-0036 might be a special case, someone got a cve for that the crate is unmaintained
This commit is contained in:
Alexander Kjäll
2021-10-14 21:53:11 +02:00
committed by GitHub
parent 9a1349483e
commit f494f83f8e
41 changed files with 41 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
crates/abox/RUSTSEC-2020-0121.md
View File

@@ -5,6 +5,7 @@ package = "abox"
date = "2020-11-10"
url = "https://github.com/SonicFrog/abox/issues/1"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36441"]
[versions]
patched = [">= 0.4.1"]

1
crates/alg_ds/RUSTSEC-2020-0033.md
View File

@@ -4,6 +4,7 @@ id = "RUSTSEC-2020-0033"
package = "alg_ds"
date = "2020-08-25"
url = "https://gitlab.com/dvshapkin/alg-ds/-/issues/1"
aliases = ["CVE-2020-36432"]
[versions]
patched = []

1
crates/appendix/RUSTSEC-2020-0149.md
View File

@@ -5,6 +5,7 @@ package = "appendix"
date = "2020-11-15"
url = "https://github.com/krl/appendix/issues/6"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36469"]
[versions]
patched = []

1
crates/array-tools/RUSTSEC-2020-0132.md
View File

@@ -5,6 +5,7 @@ package = "array-tools"
date = "2020-12-31"
url = "https://github.com/L117/array-tools/issues/2"
categories = ["memory-corruption"]
aliases = ["CVE-2020-36452"]
[versions]
patched = [">= 0.3.2"]

1
crates/async-coap/RUSTSEC-2020-0124.md
View File

@@ -5,6 +5,7 @@ package = "async-coap"
date = "2020-12-08"
url = "https://github.com/google/rust-async-coap/issues/33"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36444"]
[versions]
patched = []

1
crates/beef/RUSTSEC-2020-0122.md
View File

@@ -5,6 +5,7 @@ package = "beef"
date = "2020-10-28"
url = "https://github.com/maciejhirsz/beef/issues/37"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36442"]
[versions]
patched = [">= 0.5.0"]

1
crates/bunch/RUSTSEC-2020-0130.md
View File

@@ -5,6 +5,7 @@ package = "bunch"
date = "2020-11-12"
url = "https://github.com/krl/bunch/issues/1"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36450"]
[versions]
patched = []

1
crates/cache/RUSTSEC-2020-0128.md vendored
View File

@@ -5,6 +5,7 @@ package = "cache"
date = "2020-11-24"
url = "https://github.com/krl/cache/issues/1"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36448"]
[versions]
patched = []

1
crates/cgc/RUSTSEC-2020-0148.md
View File

@@ -6,6 +6,7 @@ date = "2020-12-10"
url = "https://github.com/playXE/cgc/issues/5"
categories = ["memory-corruption"]
keywords = ["memory-safety", "aliasing", "concurrency"]
aliases = ["CVE-2020-36466", "CVE-2020-36467", "CVE-2020-36468"]
[versions]
patched = []

1
crates/chunky/RUSTSEC-2020-0035.md
View File

@@ -5,6 +5,7 @@ package = "chunky"
date = "2020-08-25"
informational = "unsound"
url = "https://github.com/aeplay/chunky/issues/2"
aliases = ["CVE-2020-36433"]
[versions]
patched = []

1
crates/conqueue/RUSTSEC-2020-0117.md
View File

@@ -5,6 +5,7 @@ package = "conqueue"
date = "2020-11-24"
url = "https://github.com/longshorej/conqueue/issues/9"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36437"]
[versions]
patched = [">= 0.4.0"]

1
crates/convec/RUSTSEC-2020-0125.md
View File

@@ -5,6 +5,7 @@ package = "convec"
date = "2020-11-24"
url = "https://github.com/krl/convec/issues/2"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36445"]
[versions]
patched = []

1
crates/dces/RUSTSEC-2020-0139.md
View File

@@ -6,6 +6,7 @@ date = "2020-12-09"
url = "https://gitlab.redox-os.org/redox-os/dces-rust/-/issues/8"
categories = ["memory-corruption", "thread-safety"]
keywords = ["concurrency"]
aliases = ["CVE-2020-36459"]
[versions]
patched = []

1
crates/disrustor/RUSTSEC-2020-0150.md
View File

@@ -5,6 +5,7 @@ package = "disrustor"
date = "2020-12-17"
url = "https://github.com/sklose/disrustor/issues/1"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36470"]
[versions]
patched = []

1
crates/failure/RUSTSEC-2020-0036.md
View File

@@ -5,6 +5,7 @@ package = "failure"
date = "2020-05-02"
informational = "unmaintained"
url = "https://github.com/rust-lang-nursery/failure/pull/347"
aliases = ["CVE-2020-25575"]
[versions]
patched = []

1
crates/generator/RUSTSEC-2019-0020.md
View File

@@ -5,6 +5,7 @@ package = "generator"
date = "2019-09-06"
keywords = ["memory-corruption"]
url = "https://github.com/Xudong-Huang/generator-rs/issues/9"
aliases = ["CVE-2019-16144"]
[versions]
patched = [">= 0.6.18"]

1
crates/generic-array/RUSTSEC-2020-0146.md
View File

@@ -6,6 +6,7 @@ date = "2020-04-09"
url = "https://github.com/fizyk20/generic-array/issues/98"
categories = ["memory-corruption"]
keywords = ["soundness"]
aliases = ["CVE-2020-36465"]
[versions]
patched = [

1
crates/heapless/RUSTSEC-2020-0145.md
View File

@@ -7,6 +7,7 @@ url = "https://github.com/japaric/heapless/issues/181"
categories = ["memory-corruption", "memory-exposure"]
keywords = ["use-after-free"]
informational = "unsound"
aliases = ["CVE-2020-36464"]
[affected.functions]
"heapless::vec::IntoIter::clone" = ["<= 0.6"]

1
crates/kekbit/RUSTSEC-2020-0129.md
View File

@@ -5,6 +5,7 @@ package = "kekbit"
date = "2020-12-18"
url = "https://github.com/motoras/kekbit/issues/34"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36449"]
[versions]
patched = [">= 0.3.4"]

1
crates/lever/RUSTSEC-2020-0137.md
View File

@@ -6,6 +6,7 @@ date = "2020-11-10"
url = "https://github.com/vertexclique/lever/issues/15"
categories = ["memory-corruption", "thread-safety"]
keywords = ["concurrency"]
aliases = ["CVE-2020-36457"]
[versions]
patched = [">= 0.1.1"]

1
crates/lexer/RUSTSEC-2020-0138.md
View File

@@ -5,6 +5,7 @@ package = "lexer"
date = "2020-11-10"
url = "https://gitlab.com/nathanfaucett/rs-lexer/-/issues/2"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36458"]
[versions]
patched = []

1
crates/libp2p-deflate/RUSTSEC-2020-0123.md
View File

@@ -5,6 +5,7 @@ package = "libp2p-deflate"
date = "2020-01-24"
url = "https://github.com/libp2p/rust-libp2p/issues/1932"
categories = ["memory-exposure"]
aliases = ["CVE-2020-36443"]
[versions]
patched = [">= 0.27.1"]

2
crates/libpulse-binding/RUSTSEC-2018-0020.md
View File

@@ -5,7 +5,7 @@ package = "libpulse-binding"
date = "2018-12-22"
url = "https://github.com/advisories/GHSA-6gvc-4jvj-pwq4"
categories = ["memory-corruption"]
aliases = ["GHSA-6gvc-4jvj-pwq4"]
aliases = ["GHSA-6gvc-4jvj-pwq4", "CVE-2018-25001"]
[versions]
patched = [">= 2.5.0"]

1
crates/libsbc/RUSTSEC-2020-0120.md
View File

@@ -6,6 +6,7 @@ date = "2020-11-10"
url = "https://github.com/mvertescher/libsbc-rs/issues/4"
categories = ["memory-corruption", "thread-safety"]
informational = "unsound"
aliases = ["CVE-2020-36440"]
[versions]
patched = [">= 0.1.5"]

1
crates/max7301/RUSTSEC-2020-0152.md
View File

@@ -6,6 +6,7 @@ date = "2020-12-18"
url = "https://github.com/edarc/max7301/issues/1"
categories = ["memory-corruption"]
keywords = ["concurrency"]
aliases = ["CVE-2020-36472"]
[versions]
patched = [">= 0.2.0"]

1
crates/model/RUSTSEC-2020-0140.md
View File

@@ -6,6 +6,7 @@ date = "2020-11-10"
url = "https://github.com/spacejam/model/issues/3"
categories = ["thread-safety"]
informational = "unsound"
aliases = ["CVE-2020-36460"]
[versions]
patched = []

1
crates/multiqueue/RUSTSEC-2020-0143.md
View File

@@ -5,6 +5,7 @@ package = "multiqueue"
date = "2020-12-25"
url = "https://github.com/schets/multiqueue/issues/31"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36463"]
[versions]
patched = []

1
crates/net2/RUSTSEC-2020-0078.md
View File

@@ -6,6 +6,7 @@ date = "2020-11-07"
url = "https://github.com/deprecrated/net2-rs/issues/105"
keywords = ["memory", "layout", "cast"]
informational = "unsound"
aliases = ["CVE-2020-35919"]
[versions]
patched = [">= 0.2.36"]

1
crates/noise_search/RUSTSEC-2020-0141.md
View File

@@ -5,6 +5,7 @@ package = "noise_search"
date = "2020-12-10"
url = "https://github.com/pipedown/noise/issues/72"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36461"]
[versions]
patched = []

1
crates/parc/RUSTSEC-2020-0134.md
View File

@@ -5,6 +5,7 @@ package = "parc"
date = "2020-11-14"
url = "https://github.com/hyyking/rustracts/pull/6"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36454"]
[versions]
patched = []

1
crates/rcu_cell/RUSTSEC-2020-0131.md
View File

@@ -5,6 +5,7 @@ package = "rcu_cell"
date = "2020-11-14"
url = "https://github.com/Xudong-Huang/rcu_cell/issues/3"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36451"]
[versions]
patched = []

1
crates/rkyv/RUSTSEC-2021-0054.md
View File

@@ -6,6 +6,7 @@ date = "2021-04-28"
url = "https://github.com/djkoloski/rkyv/issues/113"
categories = ["memory-exposure"]
keywords = ["uninitialized", "memory", "information", "leak"]
aliases = ["CVE-2021-31919"]
[versions]
patched = [">= 0.6.0"]

1
crates/ruspiro-singleton/RUSTSEC-2020-0115.md
View File

@@ -6,6 +6,7 @@ date = "2020-11-16"
url = "https://github.com/RusPiRo/ruspiro-singleton/issues/10"
categories = ["memory-corruption", "thread-safety"]
keywords = ["concurrency"]
aliases = ["CVE-2020-36435"]
[versions]
patched = [">= 0.4.1"]

1
crates/signal-simple/RUSTSEC-2020-0126.md
View File

@@ -5,6 +5,7 @@ package = "signal-simple"
date = "2020-11-15"
url = "https://github.com/kitsuneninetails/signal-rust/issues/2"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36446"]
[versions]
patched = []

1
crates/slock/RUSTSEC-2020-0135.md
View File

@@ -5,6 +5,7 @@ package = "slock"
date = "2020-11-17"
url = "https://github.com/BrokenLamp/slock-rs/issues/2"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36455"]
[versions]
patched = []

1
crates/sys-info/RUSTSEC-2020-0100.md
View File

@@ -6,6 +6,7 @@ date = "2020-05-31"
url = "https://github.com/FillZpp/sys-info-rs/issues/63"
categories = ["memory-corruption"]
keywords = ["concurrency", "double free"]
aliases = ["CVE-2020-36434"]
[versions]
patched = [">= 0.8.0"]

1
crates/ticketed_lock/RUSTSEC-2020-0119.md
View File

@@ -5,6 +5,7 @@ package = "ticketed_lock"
date = "2020-11-17"
url = "https://github.com/kvark/ticketed_lock/issues/7"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36439"]
[versions]
patched = [">= 0.3.0"]

1
crates/tiny_future/RUSTSEC-2020-0118.md
View File

@@ -6,6 +6,7 @@ date = "2020-12-08"
url = "https://github.com/KizzyCode/tiny_future/issues/1"
categories = ["memory-corruption", "thread-safety"]
keywords = ["concurrency"]
aliases = ["CVE-2020-36438"]
[versions]
patched = [">= 0.4.0"]

1
crates/toolshed/RUSTSEC-2020-0136.md
View File

@@ -6,6 +6,7 @@ date = "2020-11-15"
url = "https://github.com/ratel-rust/toolshed/issues/12"
categories = ["memory-corruption", "thread-safety"]
keywords = ["concurrency"]
aliases = ["CVE-2020-36456"]
[versions]
patched = []

1
crates/unicycle/RUSTSEC-2020-0116.md
View File

@@ -5,6 +5,7 @@ package = "unicycle"
date = "2020-11-15"
url = "https://github.com/udoprog/unicycle/issues/8"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36436"]
[versions]
patched = [">= 0.7.1"]

1
crates/v9/RUSTSEC-2020-0127.md
View File

@@ -5,6 +5,7 @@ package = "v9"
date = "2020-12-18"
url = "https://github.com/purpleposeidon/v9/issues/1"
categories = ["memory-corruption", "thread-safety"]
aliases = ["CVE-2020-36447"]
[versions]
patched = []