OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-03 10:05:26 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,297 Commits 1 Branch 0 Tags
212746804243b1ae505e319bc5382c35c1d350ec
Commit Graph

796 Commits

Author SHA1 Message Date
Shnatsel
2127468042 Assigned RUSTSEC-2020-0149 to appendix, RUSTSEC-2021-0049 to through 2021-03-30 02:24:36 +00:00
Sergey "Shnatsel" Davidoff
542f10cf16 Merge pull request #850 from ammaraskar/through 
Report double-free in through crate
 2021-03-30 04:23:56 +02:00
Sergey "Shnatsel" Davidoff
ce9e6f4187 Merge pull request #852 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0048 to stackvector
 2021-03-30 04:23:13 +02:00
Sergey "Shnatsel" Davidoff
3e5e0df85c Merge pull request #848 from ammaraskar/appendix 
Report data race and memory safety issue in appendix
 2021-03-30 04:23:03 +02:00
Shnatsel
508a2af02c Assigned RUSTSEC-2021-0048 to stackvector 2021-03-30 02:22:34 +00:00
Sergey "Shnatsel" Davidoff
2b53054c5f Merge pull request #847 from ammaraskar/stackvector 
Report out-of-bounds write in stackvec
 2021-03-30 04:21:45 +02:00
Shnatsel
7eb0c5eb27 Assigned RUSTSEC-2021-0047 to slice-deque 2021-03-30 02:20:34 +00:00
Sergey "Shnatsel" Davidoff
e60d4aa2ad Merge pull request #846 from ammaraskar/slice-deque 
Report double-free in slice-deque
 2021-03-30 04:19:36 +02:00
Ammar Askar
7a48c26392 Report double-free in through crate 2021-03-29 13:10:43 -07:00
Ammar Askar
4b209813ab Report data race and memory safety issue in appendix 2021-03-29 11:15:24 -07:00
Ammar Askar
d93ffb22ef Report out-of-bounds write in stackvec 2021-03-29 09:47:23 -07:00
Ammar Askar
727cea2410 Report double-free in slice-deque 2021-03-29 08:57:15 -07:00
Alexis Mousset
b10d085c36 RUSTSEC-2021-0020 is fixed in hyper 0.12.36 too 
See https://github.com/hyperium/hyper/blob/0.12.x/CHANGELOG.md#v01236-2021-02-17

Fix was backported to 0.12.x in https://github.com/hyperium/hyper/pull/2436 and released in 0.12.36.
 2021-03-29 13:59:27 +02:00
Shnatsel
de97e74044 Assigned RUSTSEC-2021-0046 to telemetry 2021-03-29 06:55:04 +00:00
Sergey "Shnatsel" Davidoff
5f91ab66a3 Merge pull request #843 from ammaraskar/telemetry 
Report uninitialized memory drop on panic in telemetry
 2021-03-29 08:54:38 +02:00
Ammar Askar
e46aa5b08f Report uninitialized memory drop on panic in telemetry 2021-03-28 23:47:51 -07:00
Shnatsel
14cf0de07c Assigned RUSTSEC-2021-0045 to adtensor 2021-03-29 06:34:28 +00:00
Sergey "Shnatsel" Davidoff
6b8dc890ce Merge pull request #841 from ammaraskar/adtensor 
Report uninitialized memory drop in adtensor
 2021-03-29 08:33:49 +02:00
Ammar Askar
4418b8d1a3 Report uninitialized memory drop in adtensor 2021-03-28 23:32:12 -07:00
Shnatsel
36b0c9b40e Assigned RUSTSEC-2020-0148 to cgc 2021-03-26 19:11:23 +00:00
Ammar Askar
c8604c2616 Add advisory for multiple issues in cgc 2021-03-26 08:48:57 -07:00
github-actions[bot]
ca8a60b7be Assigned RUSTSEC-2021-0044 to rocket (#838) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2021-03-26 10:23:59 -04:00
Ammar Askar
8f7af7c6c5 [patched] Add advisory for use-after-free in rocket (#834) 
* Add advisory for use-after-free in rocket

* Clarify that the UAF can only happen during or after unwinding
 2021-03-26 10:17:31 -04:00
github-actions[bot]
40e78f4922 Assigned RUSTSEC-2021-0043 to uu_od (#837) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2021-03-26 09:07:17 -04:00
Ammar Askar
6265d0dc36 Add advisory for uninitialized exposure in uu_od (#836) 2021-03-26 09:05:12 -04:00
Shnatsel
996a3eca3b Assigned RUSTSEC-2021-0042 to insert_many 2021-03-26 06:43:47 +00:00
Ammar Askar
c742f10bbd Add advisory for double-free in insert_many 2021-03-25 22:57:00 -07:00
github-actions[bot]
3ddeb5c6cf Assigned RUSTSEC-2021-0041 to parse_duration (#829) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-03-24 21:45:20 -07:00
Disconnect3d
3864def6bf parse_duration: parse DoS through payloads with big exponent (#827) 2021-03-24 21:43:09 -07:00
Yechan Bae
cda5b3ffd4 Update CVE numbers (#828) 2021-03-19 14:21:58 -07:00
Shnatsel
0bc081bb02 Assigned RUSTSEC-2021-0040 to arenavec 2021-03-07 15:10:05 +00:00
Sergey "Shnatsel" Davidoff
bcdb169985 Merge pull request #815 from JOE1994/0109-arenavec 
arenavec: potential double drop or uninitialized memory drop upon panic
 2021-03-07 16:09:38 +01:00
Shnatsel
f2f59e4ec9 Assigned RUSTSEC-2021-0039 to endian_trait 2021-03-07 15:08:31 +00:00
Youngsuk Kim
c2248b0eef arenavec: update advisory title to clarify issue 2021-03-07 09:21:06 -05:00
JOE1994
ef52d55d34 Report 0109-arenavec to RustSec 2021-03-07 00:57:30 -05:00
JOE1994
3205a0919e Report 0090-endian_trait to RustSec 2021-03-07 00:29:24 -05:00
Shnatsel
805270dce5 Assigned RUSTSEC-2021-0038 to fltk 2021-03-06 19:30:02 +00:00
MoAlyousef
a84dbc5d57 formatting 2021-03-06 22:22:50 +03:00
MoAlyousef
35e0ea59a6 replace with keywords 2021-03-06 22:21:27 +03:00
Mohammed Alyousef
d07de9975d Update RUSTSEC-0000-0000.md 2021-03-06 22:02:26 +03:00
Mohammed Alyousef
5ce4048734 Update RUSTSEC-0000-0000.md 2021-03-06 22:02:14 +03:00
MoAlyousef
a33c05d20a add fltk advisory 2021-03-06 22:01:14 +03:00
Shnatsel
dd560c650f Assigned RUSTSEC-2021-0037 to diesel 2021-03-05 13:42:28 +00:00
Georg Semmler
c31f016dce Update crates/diesel/RUSTSEC-0000-0000.md 
Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2021-03-05 12:18:06 +00:00
Georg Semmler
e5c10bccb9 Update crates/diesel/RUSTSEC-0000-0000.md 
Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2021-03-05 09:12:08 +00:00
Georg Semmler
4f30ae8e72 Report use-after-free issue in diesels sqlite backend 2021-03-04 19:15:19 +01:00
Shnatsel
423ca50401 Assigned RUSTSEC-2021-0036 to internment 2021-03-04 15:16:03 +00:00
JOE1994
ac5a6f9239 Report 0162-internment to RustSec 2021-03-04 10:07:34 -05:00
Shnatsel
0f0dbd0675 Assigned RUSTSEC-2020-0147 to rulinalg 2021-03-04 13:58:02 +00:00
Sergey "Shnatsel" Davidoff
e4cc2dfc24 Merge pull request #801 from ammaraskar/rulinalg 
Add unmaintained advisory for rulinalg crate
 2021-03-04 14:57:11 +01:00