OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-28 23:36:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,210 Commits 1 Branch 0 Tags
10e79dbffecacb3518b73ecebe21d896b20d57f6
Commit Graph

1210 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sergey "Shnatsel" Davidoff
10e79dbffe Merge pull request #796 from ammaraskar/byte_struct 
[patched] Add advisory for uninitialized memory drop in byte_struct
 2021-03-02 19:11:30 +01:00
Sergey "Shnatsel" Davidoff
6d4216ab07 Merge pull request #797 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0031 to nano_arena
 2021-03-02 19:11:08 +01:00
Shnatsel
6dc263820d Assigned RUSTSEC-2021-0031 to nano_arena 2021-03-02 18:10:54 +00:00
Sergey "Shnatsel" Davidoff
160d5c7ec2 Merge pull request #795 from ammaraskar/nano_arena 
[patched] Add advisory for aliasing violation in nano_arena
 2021-03-02 19:09:27 +01:00
Ammar Askar
50db2cc7a3 Add advisory for aliasing violation in nano_arena 2021-03-02 10:07:44 -08:00
Ammar Askar
d9614925ce Add advisory for uninitialized memory drop in byte_struct 2021-03-02 10:04:50 -08:00
Sergey "Shnatsel" Davidoff
0133e8aca6 Merge pull request #792 from RustSec/revert-788-mark-generic-array-advisory-as-unsound 
Revert "Mark RUSTSEC-2020-0146 as unsound (#788)"
 2021-03-02 18:10:42 +01:00
Sergey "Shnatsel" Davidoff
3d4434557f Merge pull request #794 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0030 to scratchpad
 2021-03-02 18:01:41 +01:00
Shnatsel
8887e3da3a Assigned RUSTSEC-2021-0030 to scratchpad 2021-03-02 17:01:31 +00:00
Sergey "Shnatsel" Davidoff
220fb9e194 Merge pull request #793 from ammaraskar/scratchpad 
[patched] Add advisory for double-free in scratchpad
 2021-03-02 18:00:53 +01:00
Ammar Askar
e59320ad70 Add advisory for double-free in scratchpad 2021-03-02 08:55:20 -08:00
Sergey "Shnatsel" Davidoff
927b303d20 Revert "Mark RUSTSEC-2020-0146 as unsound (#788)" 
This reverts commit 14e6efec55.
 2021-03-02 17:03:07 +01:00
Konrad Borowski
14e6efec55 Mark RUSTSEC-2020-0146 as unsound (#788) 2021-03-02 07:30:22 -08:00
Emil Fresk
196ad433d8 Heapless soundness fix since 0.6.1 (#791) 2021-03-02 07:12:22 -08:00
Sergey Potapov
1c7888e4ee Update RUSTSEC-2020-0146.md with list of patched versions (#789) 
* Update RUSTSEC-2020-0146.md with list of patched versions

* Update crates/generic-array/RUSTSEC-2020-0146.md

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2021-03-02 08:48:41 -05:00
Sergey "Shnatsel" Davidoff
f40461ca33 Merge pull request #787 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0029 to truetype
 2021-03-01 21:35:42 +01:00
Shnatsel
dafd2019df Assigned RUSTSEC-2021-0029 to truetype 2021-03-01 20:33:53 +00:00
Sergey "Shnatsel" Davidoff
b06be14404 Merge pull request #786 from ammaraskar/truetype 
[patched] Report uninitialized memory exposure in truetype
 2021-03-01 21:33:26 +01:00
Ammar Askar
b4afb832c4 Report uninitialized memory exposure in truetype 2021-03-01 11:54:59 -08:00
Sergey "Shnatsel" Davidoff
cd4878b739 Merge pull request #785 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0028 to toodee
 2021-03-01 20:43:22 +01:00
Shnatsel
f4e465c615 Assigned RUSTSEC-2021-0028 to toodee 2021-03-01 19:42:57 +00:00
Sergey "Shnatsel" Davidoff
d1853a7aeb Merge pull request #784 from ammaraskar/toodee 
[patched] Add advisory for memory safety issue in toodee's insert_row
 2021-03-01 20:42:30 +01:00
Ammar Askar
af1b1de41f Add advisory for memory safety issue in toodee's insert_row 2021-03-01 11:39:59 -08:00
Sergey "Shnatsel" Davidoff
e8998cb802 Merge pull request #783 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0027 to bam
 2021-03-01 20:17:07 +01:00
Shnatsel
fae9025168 Assigned RUSTSEC-2021-0027 to bam 2021-03-01 19:16:34 +00:00
Sergey "Shnatsel" Davidoff
2b86f618e0 Merge pull request #782 from ammaraskar/bam 
[patched] Add advisory for out-of-bounds write in bam
 2021-03-01 20:15:51 +01:00
Ammar Askar
fe25ca02b8 Add advisory for out-of-bounds write in bam 2021-03-01 11:11:44 -08:00
Sergey "Shnatsel" Davidoff
1794caeec1 Merge pull request #781 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0146 to generic-array
 2021-03-01 15:06:50 +01:00
Shnatsel
c71170c328 Assigned RUSTSEC-2020-0146 to generic-array 2021-03-01 14:06:15 +00:00
Sergey "Shnatsel" Davidoff
e66a47c5aa Merge pull request #780 from xfix/generic-array-arr-unsoundness 
Add an advisory on lifetime extension in generic-array
 2021-03-01 15:05:45 +01:00
Konrad Borowski
eda0a2235a Add an advisory on lifetime extension in generic-array 2021-03-01 14:24:05 +01:00
Sergey "Shnatsel" Davidoff
6d1fcd97c7 Merge pull request #779 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0145 to heapless
 2021-02-27 02:05:50 +01:00
Shnatsel
7c260c52d1 Assigned RUSTSEC-2020-0145 to heapless 2021-02-27 01:05:30 +00:00
Sergey "Shnatsel" Davidoff
9283d50ad0 heapless: fix year: 2020, not 2010 2021-02-27 02:05:08 +01:00
Sergey "Shnatsel" Davidoff
9c16fb05f7 Merge pull request #778 from jonasbb/heapless 
heapless: use-after-free when cloning partially consumed Iterator
 2021-02-27 02:03:32 +01:00
Jonas Bushart
12033122b3 heapless: use-after-free when cloning partially consumed Iterator 2021-02-26 23:55:46 +01:00
Yechan Bae
b724f12a5b Update CVE numbers (#777) 
* Update CVE numbers

* Fix RUSTSEC-2020-0093

* Add another alias for async-h1 crate
 2021-02-25 20:00:25 -05:00
Mikhail "L117" Nikolenko
5775f25882 Fixed memory corruption. (#776) 2021-02-22 08:21:17 -05:00
Sergey "Shnatsel" Davidoff
e00ab4b806 Merge pull request #775 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0026 to comrak
 2021-02-21 03:47:31 +01:00
Shnatsel
a1aa21364f Assigned RUSTSEC-2021-0026 to comrak 2021-02-21 02:45:58 +00:00
Sergey "Shnatsel" Davidoff
56d96909f8 Merge pull request #774 from mrtc0/report-comrak-xss 
Add advisory on comrak XSS
 2021-02-21 03:44:25 +01:00
Kohei Morita
3aada4c4d8 Add advisory on comrak XSS 
Signed-off-by: Kohei Morita <mrtc0@ssrf.in>
 2021-02-21 11:22:07 +09:00
Sergey "Shnatsel" Davidoff
631d33d446 Merge pull request #773 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0024 to safe-api, RUSTSEC-2021-0025 to jsonrpc-quic
 2021-02-15 17:48:02 +01:00
Shnatsel
96b1688755 Assigned RUSTSEC-2021-0024 to safe-api, RUSTSEC-2021-0025 to jsonrpc-quic 2021-02-15 16:43:30 +00:00
Sergey "Shnatsel" Davidoff
31ce9f20aa Merge pull request #772 from S-Coyle/update_crate_names 
Update crate names
 2021-02-15 17:42:59 +01:00
Stephen Coyle
55026f94f3 Add unmaintained crate advisory for jsonrpc-quic 
Renamed to `qjsonrpc`.
 2021-02-15 16:19:30 +00:00
Stephen Coyle
c2e8d57fbd Add unmaintained crate advisory for safe-api 
Renamed to `sn_api`.
 2021-02-15 16:08:19 +00:00
github-actions[bot]
7c81bd4fc3 Assigned RUSTSEC-2021-0023 to rand_core (#771) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-02-15 07:35:47 -08:00
Diggory Hardy
221ec336f9 rand_core: incorrect check on buffer length when seeding RNGs (#764) 2021-02-15 07:31:38 -08:00
Sergey "Shnatsel" Davidoff
cb9432ef2a Merge pull request #770 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0022 to yottadb
 2021-02-15 02:07:53 +01:00