OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-30 16:24:05 +01:00
Code Issues Packages Projects Releases Wiki Activity
274 Commits 1 Branch 0 Tags
7b363b785a7e2a8ad4e13f22901f4e0db1598fc0
Commit Graph

274 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
llogiq
7b363b785a add out-of-bounds memory access in compact_arena < 0.4.0 (#137) 2019-09-01 10:54:20 -07:00
HeroicKatora
c8c41f939a Add hdr decoder use-after-free advisory (#135) 2019-09-01 10:46:14 -07:00
Tony Arcieri
f758dea601 Merge pull request #136 from RustSec/alex-patch-1 
Tell people to delete comments in the example advisory
 2019-08-31 12:56:09 -07:00
Alex Gaynor
de8a052d3e Tell people to delete comments in the example advisory 2019-08-31 15:27:07 -04:00
Tony Arcieri
07da5c8ed5 Merge pull request #133 from RustSec/RUSTSEC-2019-0013 
Assign RUSTSEC-2019-0013 to spin
 2019-08-28 10:36:26 -07:00
Tony Arcieri
44dc01298e Assign RUSTSEC-2019-0013 to spin 
Original PR: https://github.com/RustSec/advisory-db/pull/132
 2019-08-28 10:11:01 -07:00
Tony Arcieri
50a678280c Merge pull request #132 from 64/master 
Report vulnerability in spin crate's RwLock impl
 2019-08-28 10:09:24 -07:00
Matt Taylor
5568479c48 Clarify that users of Once are not affected 2019-08-28 06:37:10 +01:00
Matt Taylor
3c55761403 Report vulnerability in spin crate's RwLock impl 2019-08-27 20:09:09 +01:00
Tony Arcieri
f9de4aed5b Merge pull request #129 from RalfJung/memoffset 
actually memoffset also had an uninit-drop vuln
 2019-07-20 10:24:42 -07:00
Ralf Jung
9ec1ad0a9c typo 2019-07-20 13:45:36 +02:00
Ralf Jung
7e3423c7ec actually memoffset also had an uninit-drop vuln, and that affects all versions ever published 2019-07-20 12:56:59 +02:00
Tony Arcieri
ce7e93d4a9 Merge pull request #128 from RustSec/RUSTSEC-2019-0012 
Assign RUSTSEC-2019-0012 to smallvec
 2019-07-19 14:18:21 -07:00
Tony Arcieri
3a175b7b37 Assign RUSTSEC-2019-0012 to smallvec 
Original PR: https://github.com/RustSec/advisory-db/pull/127/
 2019-07-19 14:12:22 -07:00
Tony Arcieri
587ac0152c Merge pull request #127 from Shnatsel/patch-1 
Add advisory for smallvec issue #149
 2019-07-19 13:47:20 -07:00
Sergey "Shnatsel" Davidoff
150700481b Update RUSTSEC-0000-0000.toml 2019-07-19 21:45:40 +02:00
Sergey "Shnatsel" Davidoff
3b810f1c13 Add advisory for smallvec issue #149 2019-07-19 21:35:39 +02:00
Tony Arcieri
b8451d4f7f Merge pull request #126 from RustSec/RUSTSEC-2019-0011 
Assign RUSTSEC-2019-0011 to memoffset
 2019-07-17 10:02:13 -07:00
Tony Arcieri
4d673eedf4 Assign RUSTSEC-2019-0011 to memoffset 
Original PR: https://github.com/RustSec/advisory-db/pull/124
 2019-07-17 09:50:31 -07:00
Tony Arcieri
32d6ae5022 Merge pull request #124 from RalfJung/memoffset 
add memoffset issue
 2019-07-17 09:43:02 -07:00
Tony Arcieri
d18235728a Merge branch 'master' into memoffset 2019-07-17 08:37:20 -07:00
Tony Arcieri
a081494d7e Merge pull request #125 from RustSec/update-deps 
Update dependencies
 2019-07-16 12:39:44 -07:00
Tony Arcieri
e3b1fc14bc Update dependencies 
- `gumdrop` v0.6
- `rustsec` v0.12
- `crates-io-api` v0.5
 2019-07-16 12:15:09 -07:00
Ralf Jung
148b3d2dd0 add memoffset issue 2019-07-16 15:51:12 +02:00
Tony Arcieri
f7a0482e0f Merge pull request #123 from RustSec/RUSTSEC-2019-0010 
Assign RUSTSEC-2019-0010 to libflate
 2019-07-07 11:34:38 -07:00
Tony Arcieri
8b88d66355 Assign RUSTSEC-2019-0010 to libflate 
Original PR: https://github.com/RustSec/advisory-db/pull/122
 2019-07-07 11:25:05 -07:00
Tony Arcieri
27358aef48 Merge pull request #122 from Shnatsel/libflate-advisory 
Add advisory for libflate
 2019-07-07 10:49:08 -07:00
Sergey "Shnatsel" Davidoff
ab8ae78368 Merge branch 'master' into libflate-advisory 2019-07-07 18:45:59 +02:00
Sergey "Shnatsel" Davidoff
5eacb752b4 improve summary 2019-07-07 18:45:21 +02:00
Sergey "Shnatsel" Davidoff
6714149494 Add advisory for libflate 2019-07-07 18:43:49 +02:00
Tony Arcieri
7c5fccf193 Merge pull request #121 from RustSec/RUSTSEC-2019-0008/fix-link 
RUSTSEC-2019-0008: fix link to disclosure PR
 2019-07-03 08:07:32 -07:00
Tony Arcieri
985c55342a RUSTSEC-2019-0008: fix link to disclosure PR 2019-07-03 07:37:05 -07:00
Tony Arcieri
b37a57de89 Merge pull request #120 from RustSec/RUSTSEC-2019-0009 
Assign RUSTSEC-2019-0009 to smallvec
 2019-07-03 07:23:03 -07:00
Tony Arcieri
a20910b79f Assign RUSTSEC-2019-0009 to smallvec 
Original PR: https://github.com/RustSec/advisory-db/pull/119
 2019-07-03 06:57:06 -07:00
Tony Arcieri
09936b6d4b Merge pull request #119 from Shnatsel/patch-1 
Add advisory for SmallVec issue #148
 2019-07-02 15:21:43 -07:00
Sergey "Shnatsel" Davidoff
2cbddfd81d Drop comments from new smallvec advisory 2019-07-02 22:55:15 +02:00
Sergey "Shnatsel" Davidoff
7af1eac5b1 Rename tentative advisory to please CI 2019-06-30 20:11:34 +02:00
Sergey "Shnatsel" Davidoff
144eb01eef Add advisory for SmallVec issues #148 2019-06-30 20:04:20 +02:00
Tony Arcieri
7d2f62d5ed Merge pull request #118 from RustSec/contributing/yanking 
CONTRIBUTING.md: Recommend yanking affected versions (closes #74)
 2019-06-25 17:34:12 -07:00
Tony Arcieri
6890db2d53 CONTRIBUTING.md: Recommend yanking affected versions (closes #74) 
This seems like the best advice we can give for now
 2019-06-25 17:29:54 -07:00
Tony Arcieri
c49ac2cf3f Merge pull request #117 from RustSec/RUSTSEC-2019-0008 
Assign RUSTSEC-2019-0008 to simd-json
 2019-06-24 13:31:19 -07:00
Tony Arcieri
f0a801979c Assign RUSTSEC-2019-0008 to simd-json 
Original PR: https://github.com/RustSec/advisory-db/pull/116
 2019-06-24 13:20:43 -07:00
Tony Arcieri
003d42c27e Merge pull request #116 from Licenser/simd-json-pr-27 
Add advisory for segfault bug in simd-json.rs
 2019-06-24 13:11:21 -07:00
Heinz N. Gies
8134840ade Remove comments and fix spelling 2019-06-24 21:11:55 +02:00
Heinz N. Gies
f65960fb51 Add advisory for segfault bug in simd-json.rs 2019-06-24 21:11:55 +02:00
Tony Arcieri
fd759b72f2 Merge pull request #115 from RustSec/RUSTSEC-2019-0007 
Assign RUSTSEC-2019-0007 to asn1_der
 2019-06-24 10:20:14 -07:00
Tony Arcieri
602f9252e1 Assign RUSTSEC-2019-0007 to asn1_der 
Original PR: https://github.com/RustSec/advisory-db/pull/113
 2019-06-24 09:48:05 -07:00
Tony Arcieri
c1a4315346 Merge pull request #113 from KizzyCode/master 
Filing issue for `asn1_der`
 2019-06-24 09:46:17 -07:00
Tony Arcieri
67edcf34e4 Merge branch 'master' into master 2019-06-24 09:32:01 -07:00
Tony Arcieri
4d8795f676 Merge pull request #114 from 8573/8573/use-more-informative-wording-from-RS-2019-0005-in-RS-2019-0006/1 
RUSTSEC-2019-0006: Use -0005's format vuln wording
 2019-06-24 09:31:29 -07:00