OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-30 16:24:05 +01:00
Code Issues Packages Projects Releases Wiki Activity
904 Commits 1 Branch 0 Tags
47061ba3104e3b4fa7ca114cbc24ebc51e90525c
Commit Graph

904 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Yechan Bae
47061ba310 Report 0025-im to RustSec 2021-01-18 15:50:10 -05:00
Sergey "Shnatsel" Davidoff
4e1c5c4006 Merge pull request #568 from JOE1994/glsl-layout 
glsl-layout: double drop upon panic in 'fn map_array'
 2021-01-18 21:48:42 +01:00
JOE1994
efb79effca report double drop issue in glsl-layout 2021-01-18 15:41:35 -05:00
Sergey "Shnatsel" Davidoff
854d300690 Merge pull request #566 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0004 to lazy-init
 2021-01-18 20:55:31 +01:00
Shnatsel
47d589b0bd Assigned RUSTSEC-2021-0004 to lazy-init 2021-01-18 19:54:50 +00:00
Sergey "Shnatsel" Davidoff
5bb2d97363 Merge pull request #565 from niklasf/lazy-init 
lazy-init: Missing Send bound for Lazy (khuey/lazy-init#9)
 2021-01-18 20:54:19 +01:00
Sergey "Shnatsel" Davidoff
6703edaf88 apply review changes 2021-01-18 20:51:26 +01:00
Niklas Fiekas
6ea698b85d lazy-init: Missing Send bound for Lazy (khuey/lazy-init#9) 2021-01-17 21:41:50 +01:00
Yechan Bae
b08a98acc7 Fix typo in http CVE number (#564) 2021-01-15 07:32:15 -08:00
Jeffrey Robinson
14b29c77eb Typo in RUSTSEC-2020-0013 (#562) 
Minor typo.
 2021-01-14 09:57:27 -08:00
Tony Arcieri
8e1ad08eee Publish Web: fix YAML indenting (#559) 2021-01-13 06:06:20 -08:00
Tony Arcieri
50451dd5b8 Publish Web: fix rustsec-admin install (#558) 
We do still need to check if `rustsec-admin` is installed, as an error
is returned if it's already installed.
 2021-01-13 06:04:12 -08:00
Tony Arcieri
a3efac5977 Add "Publish Web" GitHub Action (#557) 
Automatically rebuilds the contents of the `gh-pages` branch on merge
 2021-01-13 06:00:38 -08:00
Matt Brubeck
7feb037b84 RUSTSEC-2020-0017.md (use-after-free in internment) is fixed (#554) 
The vulnerability in this report was fixed in internment 0.4.0.  For details, see
https://github.com/droundy/internment/issues/11#issuecomment-758862385.
 2021-01-12 11:05:27 -08:00
Sergey "Shnatsel" Davidoff
fa47ec0c0b Merge pull request #553 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0003 to smallvec
 2021-01-08 19:15:06 +01:00
Shnatsel
519862dda6 Assigned RUSTSEC-2021-0003 to smallvec 2021-01-08 18:14:52 +00:00
Sergey "Shnatsel" Davidoff
5851ec6321 Merge pull request #552 from mbrubeck/smallvec 
smallvec: Buffer overflow in insert_many
 2021-01-08 19:14:20 +01:00
Matt Brubeck
dfe84fd15f smallvec: Buffer overflow in insert_many 2021-01-08 09:57:23 -08:00
Sergey "Shnatsel" Davidoff
aa3b156442 do not suggest pretty_assertions as an alternative 
because it depends on `difference`
 2021-01-07 05:01:36 +01:00
Sergey "Shnatsel" Davidoff
0ac1862560 Merge pull request #551 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0095 to difference
 2021-01-06 17:15:28 +01:00
Shnatsel
87208edb17 Assigned RUSTSEC-2020-0094 to reffers, RUSTSEC-2020-0095 to difference 2021-01-06 16:13:10 +00:00
Sergey "Shnatsel" Davidoff
a3c2e93679 Merge pull request #550 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0094 to reffers
 2021-01-06 17:12:42 +01:00
Sergey "Shnatsel" Davidoff
9ff73c540d Merge pull request #538 from brightly-salty/difference 
Create advisory for difference
 2021-01-06 17:12:25 +01:00
tarcieri
ccb4b2a526 Assigned RUSTSEC-2020-0094 to reffers 2021-01-06 16:12:17 +00:00
Youngsuk Kim
89a73839e7 add advisory for data race in reffers (#533) 2021-01-06 08:10:43 -08:00
github-actions[bot]
31d74c5408 Assigned RUSTSEC-2021-0002 to interfaces2 (#549) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2021-01-06 08:07:19 -08:00
Sergey "Shnatsel" Davidoff
76a2a25ecc Merge pull request #545 from dalance/add_interfaces2 
Add advisory for interfaces2
 2021-01-06 17:06:05 +01:00
github-actions[bot]
4ef9441cbd Assigned RUSTSEC-2021-0001 to mdbook (#548) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-01-04 09:50:29 -08:00
Tony Arcieri
0708242759 Bump rustsec-admin to v0.3.3 (#547) 
Should address the bug we encountered assigning an ID to the first
advisory for a given year:

https://github.com/RustSec/advisory-db/runs/1644743652
 2021-01-04 09:35:34 -08:00
Yechan Bae
846dfb93a3 Update CVE numbers (#542) 2021-01-04 09:02:59 -08:00
Pietro Albini
71c5fdb926 add CVE-2020-26297 to mdbook <= 0.4.4 (#546) 2021-01-04 07:55:43 -08:00
dalance
14a3b0cead Add advisory for interfaces2 2021-01-04 18:34:12 +09:00
Yechan Bae
79832ae026 Add CVE number for RUSTSEC-2020-0091 (#541) 2020-12-30 18:47:09 -05:00
brightly-salty
ae31f73141 Create advisory for difference 2020-12-20 20:32:18 -06:00
Sergey "Shnatsel" Davidoff
65fc46c831 Merge pull request #537 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0093 to async-h1
 2020-12-18 17:22:02 +01:00
Shnatsel
06a9a03d3b Assigned RUSTSEC-2020-0093 to async-h1 2020-12-18 16:21:43 +00:00
Sergey "Shnatsel" Davidoff
34cd60013f Merge pull request #536 from jbr/async-h1-request-smuggling-unread-bodies 
File an http request smuggling advisory for async-h1 < 2.3.0
 2020-12-18 17:21:11 +01:00
Sergey "Shnatsel" Davidoff
ce0f9692ff drop commented-out fields 2020-12-18 17:21:04 +01:00
Jacob Rothstein
f8b4364f88 maybe appease linter? 2020-12-17 17:57:48 -08:00
Jacob Rothstein
fbb1d34eeb File an advisory for async-h1 < 2.3.0 2020-12-17 17:50:01 -08:00
github-actions[bot]
ac20d3a702 Assigned RUSTSEC-2020-0092 to concread (#535) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2020-12-17 14:42:35 -05:00
Youngsuk Kim
56276f96a6 Add advisory for data race in concread (#532) 2020-12-17 14:39:03 -05:00
github-actions[bot]
f64c4fc8bb Assigned RUSTSEC-2020-0091 to arc-swap (#531) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-11 10:31:21 -08:00
Michal 'vorner' Vaner
80d45a8d18 Dangling reference in arc_swap::access::Map (#530) 2020-12-11 10:09:15 -08:00
Lyndon Brown
4e0c71a0d6 Fix wrong url (#529) 
Mistake from fb2a1a6c47
 2020-12-11 06:38:51 -08:00
github-actions[bot]
189213fa5e Assigned RUSTSEC-2020-0090 to thex (#527) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-09 07:44:25 -08:00
Ammar Askar
f71bc5a6d3 Add advisory for data race in thex (#523) 2020-12-09 07:41:23 -08:00
github-actions[bot]
a043a90d0c Assigned RUSTSEC-2020-0089 to nanorand (#526) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-09 07:33:38 -08:00
aspen
e90491ebc6 Add nanorand 0.5.0 RNG weakness (#525) 2020-12-09 07:32:30 -08:00
Sergey "Shnatsel" Davidoff
0588583ef3 Merge pull request #522 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0088 to magnetic
 2020-12-08 19:56:53 +01:00