OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-07 04:01:35 +01:00
Code Issues Packages Projects Releases Wiki Activity
806 Commits 1 Branch 0 Tags
5b68bd5a1f120efc661cc5807cbcfd1b37e1ac3c
Commit Graph

447 Commits

Author SHA1 Message Date
HeroicKatora
5b68bd5a1f Advisory for image issue 1357 (#488) 2020-11-20 07:06:26 -08:00
github-actions[bot]
f958b20831 Assigned RUSTSEC-2020-0072 to futures-intrusive (#487) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-18 18:22:59 -08:00
Ammar Askar
15125a950c Report soundness bug with concurrency in futures-intrusive (#482) 2020-11-18 18:22:11 -08:00
github-actions[bot]
1d7066d6d1 Assigned RUSTSEC-2020-0071 to time (#486) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-18 18:21:00 -08:00
Jacob Pratt
793301b134 Potential segfault in the time crate (#485) 2020-11-18 18:19:28 -08:00
github-actions[bot]
78ad57d13b Assigned RUSTSEC-2020-0070 to lock_api (#484) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-18 10:06:59 -08:00
Ammar Askar
7b5e78867f Report soundness bug with lock_api (#483) 2020-11-18 10:04:30 -08:00
github-actions[bot]
af0ee095ba Assigned RUSTSEC-2020-0069 to lettre (#481) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-11 10:27:32 -08:00
Alexis Mousset
108b6b5967 Add advisory for lettre sendmail transport (#478) 2020-11-11 10:26:11 -08:00
Tony Arcieri
0bdef412ac RUSTSEC-2020-0068: remove parameters from affected functions (#477) 
It's breaking `cargo-deny` which hasn't updated to the new parser yet
 2020-11-09 12:02:00 -08:00
github-actions[bot]
0ca360b195 Assigned RUSTSEC-2020-0068 to multihash (#476) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-09 11:05:42 -08:00
Kirill Pimenov
5eb66747c4 Unexpected panic in multihash from_slice parsing code (#475) 2020-11-09 11:04:58 -08:00
Avery Harnish
587ed762aa fix: s/directoriess/directories 2020-11-05 14:55:13 -06:00
github-actions[bot]
65b9aa70b7 Assigned RUSTSEC-2020-0067 to quic-p2p (#473) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-02 06:50:19 -08:00
Stephen Coyle
9757ff2052 Add unmaintained crate advisory for quic-p2p (#468) 
It's been renamed to `qp2p`
 2020-11-02 06:49:09 -08:00
github-actions[bot]
d5cf9d7653 Assigned RUSTSEC-2020-0066 to safe_bindgen (#472) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-02 06:48:54 -08:00
Stephen Coyle
3761ab5885 Add unmaintained crate advisory for safe_bindgen (#466) 
It's been renamed to `sn_bindgen`
 2020-11-02 06:46:50 -08:00
github-actions[bot]
00a4c19a46 Assigned RUSTSEC-2020-0065 to fake_clock (#471) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-02 06:46:33 -08:00
Stephen Coyle
a949bd4620 Add unmaintained crate advisory for fake_clock (#465) 
It's been renamed to `sn_fake_clock`
 2020-11-02 06:45:29 -08:00
github-actions[bot]
74c2e86f5d Assigned RUSTSEC-2020-0064 to ffi_utils (#470) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-02 06:45:15 -08:00
Stephen Coyle
3adba0fcc4 Add unmaintained crate advisory for ffi_utils (#464) 
It's been renamed to `sn_ffi_utils`
 2020-11-02 06:43:54 -08:00
github-actions[bot]
51fd5e3c97 Assigned RUSTSEC-2020-0063 to safe-nd (#469) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-11-02 06:43:36 -08:00
Stephen Coyle
0da539a26e Add unmaintained crate advisory for safe-nd (#467) 
It's been renamed to `sn_data_types`
 2020-11-02 06:42:05 -08:00
Shnatsel
52cd103576 Assigned RUSTSEC-2020-0062 to futures-util 2020-10-31 13:16:56 +00:00
Sergey "Shnatsel" Davidoff
529c111e43 Merge pull request #460 from BlackHoleFox/futures-util-futuresunordered-badsync 
Add advisory for unsound Sync impl on FuturesUnordered in futures-util
 2020-10-31 14:16:33 +01:00
Shnatsel
e4784fd312 Assigned RUSTSEC-2020-0061 to futures-task 2020-10-31 13:16:00 +00:00
Sergey "Shnatsel" Davidoff
3a89b52370 Merge pull request #459 from BlackHoleFox/futures-task-noop_waker_ref-null-deref 
Add advisory for potential null pointer deref in futures-task
 2020-10-31 14:15:36 +01:00
Shnatsel
338f097760 Assigned RUSTSEC-2020-0060 to futures-task 2020-10-31 13:12:22 +00:00
BlackHoleFox
47bfd9f2a4 Add advisory for unsound Sync implemention on FuturesUnordered in futures-util 2020-10-30 20:54:34 -05:00
BlackHoleFox
8c7efa1d5c Add advisory for potential null pointer deref in futures-task 2020-10-30 20:30:38 -05:00
BlackHoleFox
6a31581e98 Add advisory for use-after-free in futures-util task::waker 2020-10-30 19:44:41 -05:00
github-actions[bot]
9cd2504f39 Assigned RUSTSEC-2020-0059 to futures-util (#456) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-10-30 19:55:47 -04:00
BlackHoleFox
a36b1185ed Add advisory for data race fix in futures-util (#455) 2020-10-30 19:54:00 -04:00
Tony Arcieri
67a2144be6 RUSTSEC-2020-0015: remove wildcards (#451) 
They're breaking the parser:

https://github.com/RustSec/rustsec-crate/pull/244/checks?check_run_id=1305962917
 2020-10-25 14:39:06 -07:00
Tony Arcieri
1bf68e0dce RUSTSEC-2020-0015: use wildcards in version req (#450) 
`semver` v0.11 is having trouble parsing these requirements.
 2020-10-25 14:28:21 -07:00
Tony Arcieri
3b1f08f212 Unyank RUSTSEC-2020-0011 (#448) 
This advisory is featured in the `plutonium` rustdoc:

https://docs.rs/plutonium/

It'd be a shame to have the link 404.
 2020-10-25 12:51:46 -07:00
github-actions[bot]
146de2d8c7 Assigned RUSTSEC-2018-0021 to libpulse-binding (#447) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-10-25 12:21:56 -07:00
Lyndon Brown
59bee556dd Add advisory for use-after-frees fixed in libpulse-binding v1.2.1 (#433) 2020-10-25 12:19:41 -07:00
github-actions[bot]
1e48ac3958 Assigned RUSTSEC-2019-0038 to libpulse-binding (#446) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-10-25 12:19:23 -07:00
Lyndon Brown
681a20408c Add advisory for notable UB fix in libpulse-binding v2.6.0 (#435) 2020-10-25 12:17:51 -07:00
github-actions[bot]
218de91af9 Assigned RUSTSEC-2020-0058 to stream-cipher (#445) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-10-25 12:14:03 -07:00
Tony Arcieri
5c9ebbfa87 Add unmaintained crate advisory for stream-cipher (#444) 
It's been renamed to `cipher`.
 2020-10-25 12:09:41 -07:00
github-actions[bot]
fa616899f0 Assigned RUSTSEC-2020-0057 to block-cipher (#443) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-10-25 12:05:32 -07:00
Tony Arcieri
8505c9578f Add unmaintained crate advisory for block-cipher (#442) 
It's been renamed to `cipher`.
 2020-10-25 12:04:19 -07:00
github-actions[bot]
691a7504be Assigned RUSTSEC-2020-0056 to stdweb (#441) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-10-25 11:57:46 -07:00
Tony Arcieri
6544190137 Add unmaintained crate advisory for stdweb (#439) 
Closes #391
 2020-10-25 11:08:58 -07:00
Tony Arcieri
fb2a1a6c47 Rename RUSTSEC-2020-0055 to RUSTSEC-2018-0020 (#437) 
It was accidentally filed under the wrong year.
 2020-10-22 06:49:26 -07:00
Sergey "Shnatsel" Davidoff
7338ca9c70 Addign RUSTSEC-2020-0055 to libpulse-binding 2020-10-22 05:31:42 +02:00
Lyndon Brown
c128a6bdcd Add advisory for possible use-after-free fixed in libpulse-binding v2.5.0 2020-10-22 03:15:42 +01:00
Sergey "Shnatsel" Davidoff
7d14cb7de8 Merge pull request #428 from taiki-e/rustsec-2020-0052 
Add CVE and GHSA to RUSTSEC-2020-0052
 2020-10-17 01:12:16 +02:00