OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-06 11:39:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
703 Commits 1 Branch 0 Tags
14f4dbb09a23d4a8625e2f7fcd85d4ade108e379
Commit Graph

371 Commits

Author SHA1 Message Date
Sergey "Shnatsel" Davidoff
14f4dbb09a fix date more 2020-09-26 21:29:49 +02:00
Sergey "Shnatsel" Davidoff
8974b0f390 Merge pull request #402 from RustSec/actix-http-pin 
Advisory for unsound pinning in actix-http
 2020-09-26 21:22:39 +02:00
Sergey "Shnatsel" Davidoff
09a306dbc2 fix date 2020-09-26 21:17:03 +02:00
github-actions[bot]
b091551faf Assigned RUSTSEC-2020-0047 to array-queue 2020-09-26 17:46:05 +00:00
Sergey "Shnatsel" Davidoff
9b360973e2 Merge pull request #396 from ammaraskar/0017-array-queue 
Add advisory for out-of-bounds read in array-queue.
 2020-09-26 19:45:28 +02:00
Sergey "Shnatsel" Davidoff
6f59b11780 Advisory for unsound pinning in actix-http 2020-09-26 19:35:10 +02:00
github-actions[bot]
9fe2230dcc Assigned RUSTSEC-2020-0046 to actix-service 2020-09-26 17:07:03 +00:00
Sergey "Shnatsel" Davidoff
db20f9b701 Merge pull request #399 from RustSec/actix-service-cell 
Add advisory for unsound Cell in actix-service
 2020-09-26 19:06:04 +02:00
github-actions[bot]
0eb24bf2a5 Assigned RUSTSEC-2020-0045 to actix-utils 2020-09-26 17:05:26 +00:00
Sergey "Shnatsel" Davidoff
90ac1e0dea Add advisory for unsound Cell in actix-service 2020-09-26 18:43:20 +02:00
Sergey "Shnatsel" Davidoff
41f95e41cb fix url 2020-09-26 18:37:46 +02:00
Sergey "Shnatsel" Davidoff
f7c02faed1 add advisory for custom Cell in actix-utils 2020-09-26 18:31:04 +02:00
github-actions[bot]
64d1651ee7 Assigned RUSTSEC-2020-0044 to atom 2020-09-26 16:04:29 +00:00
Sergey "Shnatsel" Davidoff
94949cbee4 Merge pull request #390 from ammaraskar/atom_issue 
Add advisory for atom crate
 2020-09-26 18:03:55 +02:00
Sergey "Shnatsel" Davidoff
ebd9ffcac8 Update RUSTSEC-0000-0000.toml 2020-09-26 12:27:30 +02:00
Sergey "Shnatsel" Davidoff
bd394d56fd Update RUSTSEC-0000-0000.toml 2020-09-26 12:26:17 +02:00
Sergey "Shnatsel" Davidoff
d0bdfc9546 Update RUSTSEC-0000-0000.toml 2020-09-26 12:25:05 +02:00
Sergey "Shnatsel" Davidoff
ee8f668400 Update RUSTSEC-0000-0000.toml 2020-09-26 12:23:43 +02:00
Ammar Askar
a1076cfa18 Add advisory for out-of-bounds read in array-queue. 2020-09-26 00:54:49 -07:00
github-actions[bot]
687f999343 Assigned RUSTSEC-2020-0043 to ws 2020-09-25 12:55:36 +00:00
Benjamin Kampmann
5a25462b61 the year is 2020 2020-09-25 12:23:05 +02:00
Benjamin Kampmann
61a2e15704 adding ws-rs advisory 2020-09-25 12:14:34 +02:00
github-actions[bot]
57fc37a584 Assigned RUSTSEC-2020-0042 to stack 2020-09-24 18:01:53 +00:00
Ammar Askar
0fdd4d8a5c Add patched version 2020-09-24 10:33:22 -07:00
Ammar Askar
4c2d1c0d1b Add advisory for out-of-bounds write in stack crate 2020-09-24 03:03:13 -07:00
Alexander Kjäll
12198c5751 added CVE number (#387) 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25016
 2020-09-23 07:52:00 -07:00
Alexander Kjäll
903e6532e6 added CVE numbers (#386) 
looks like some confusion if the CVE is about this or RUSTSEC-2020-0036, but it looks like this is the actual security hole

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25575
 2020-09-23 07:51:49 -07:00
Ammar Askar
f324f2d97c Add advisory for atom crate 2020-09-21 11:54:43 -07:00
Alexander Kjäll
2be9a1531e added CVE numbers 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25791
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25792
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25793
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25794
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25795
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25796
 2020-09-20 12:20:15 +02:00
Alexander Kjäll
e692f8f02f added CVE number 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25573
 2020-09-19 17:23:47 +02:00
Alexander Kjäll
a14637fe62 added CVE number CVE-2020-25574 (#385) 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25574
 2020-09-19 11:03:04 -04:00
Alexander Kjäll
ad7cf2f303 Added CVE number (#384) 
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25576
 2020-09-19 09:59:34 -04:00
github-actions[bot]
b5df32b9e6 Assigned RUSTSEC-2020-0041 to sized-chunks 2020-09-06 22:14:56 +00:00
Yechan Bae
5534479d2a Initial report for 0014-sized-chunks 2020-09-06 18:05:00 -04:00
Yechan Bae
3cd0280fe7 Update patched version of 0013-simple-slab 2020-09-06 04:26:47 -04:00
github-actions[bot]
60caffb2bf Assigned RUSTSEC-2020-0040 to obstack 2020-09-04 19:35:03 +00:00
Sergey "Shnatsel" Davidoff
ec4382d316 Merge pull request #373 from Qwaz/0011-obstack 
obstack: Obstack generates unaligned references
 2020-09-04 21:34:28 +02:00
Sergey "Shnatsel" Davidoff
87aae01a36 mark ">= 0.1.4" as fixed 2020-09-04 21:32:48 +02:00
github-actions[bot]
d7fd255bf0 Assigned RUSTSEC-2020-0039 to simple-slab 2020-09-04 10:10:44 +00:00
Yechan Bae
d2aaa6c1b2 Initial report for 0013-simple-slab 2020-09-03 23:56:02 -04:00
github-actions[bot]
75a29e606a Assigned RUSTSEC-2020-0038 to ordnung 2020-09-03 10:47:37 +00:00
Yechan Bae
d5811c82b2 Update 0012-ordnung 2020-09-03 06:29:27 -04:00
Yechan Bae
daf2b6281a Initial report for 0011-obstack 2020-09-03 02:27:06 -04:00
github-actions[bot]
fe43002372 Assigned RUSTSEC-2020-0037 to crayon 2020-08-31 21:35:14 +00:00
Sergey "Shnatsel" Davidoff
8acfb6ad12 Merge pull request #371 from Qwaz/0010-crayon 
crayon: Misbehaving `HandleLike` implementation can lead to memory safety violation
 2020-08-31 23:34:37 +02:00
Yechan Bae
484d002213 Initial report for 0010-crayon 2020-08-31 17:14:55 -04:00
Sergey "Shnatsel" Davidoff
c341943a3c Merge pull request #352 from RustSec/lz-fear-suggestion 
Suggest lz-fear as an alternative to lz4-compress
 2020-08-27 22:59:48 +02:00
Tony Arcieri
df8a0c466a RUSTSEC-2020-0036: add fehler (#370) 
When I originally filed this I used the list of alternatives that were
mentioned in the rust-internals announcement. That said, `fehler` is
another notable one by the same author as `failure`.
 2020-08-27 12:20:02 -07:00
github-actions[bot]
1d3ca11526 Assigned RUSTSEC-2020-0036 to failure (#369) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-08-27 10:18:03 -07:00
Tony Arcieri
002af101a9 failure: add informational "unmaintained" advisory (#368) 
Closes #284. See also:

- https://internals.rust-lang.org/t/failure-crate-maintenance/12087
- https://github.com/rust-lang-nursery/failure/pull/347
 2020-08-27 10:13:28 -07:00