OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-29 15:56:07 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,176 Commits 1 Branch 0 Tags
9c16fb05f7ef17db5fe627acdebeefdcf19f3ee2
Commit Graph

1176 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sergey "Shnatsel" Davidoff
9c16fb05f7 Merge pull request #778 from jonasbb/heapless 
heapless: use-after-free when cloning partially consumed Iterator
 2021-02-27 02:03:32 +01:00
Jonas Bushart
12033122b3 heapless: use-after-free when cloning partially consumed Iterator 2021-02-26 23:55:46 +01:00
Yechan Bae
b724f12a5b Update CVE numbers (#777) 
* Update CVE numbers

* Fix RUSTSEC-2020-0093

* Add another alias for async-h1 crate
 2021-02-25 20:00:25 -05:00
Mikhail "L117" Nikolenko
5775f25882 Fixed memory corruption. (#776) 2021-02-22 08:21:17 -05:00
Sergey "Shnatsel" Davidoff
e00ab4b806 Merge pull request #775 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0026 to comrak
 2021-02-21 03:47:31 +01:00
Shnatsel
a1aa21364f Assigned RUSTSEC-2021-0026 to comrak 2021-02-21 02:45:58 +00:00
Sergey "Shnatsel" Davidoff
56d96909f8 Merge pull request #774 from mrtc0/report-comrak-xss 
Add advisory on comrak XSS
 2021-02-21 03:44:25 +01:00
Kohei Morita
3aada4c4d8 Add advisory on comrak XSS 
Signed-off-by: Kohei Morita <mrtc0@ssrf.in>
 2021-02-21 11:22:07 +09:00
Sergey "Shnatsel" Davidoff
631d33d446 Merge pull request #773 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0024 to safe-api, RUSTSEC-2021-0025 to jsonrpc-quic
 2021-02-15 17:48:02 +01:00
Shnatsel
96b1688755 Assigned RUSTSEC-2021-0024 to safe-api, RUSTSEC-2021-0025 to jsonrpc-quic 2021-02-15 16:43:30 +00:00
Sergey "Shnatsel" Davidoff
31ce9f20aa Merge pull request #772 from S-Coyle/update_crate_names 
Update crate names
 2021-02-15 17:42:59 +01:00
Stephen Coyle
55026f94f3 Add unmaintained crate advisory for jsonrpc-quic 
Renamed to `qjsonrpc`.
 2021-02-15 16:19:30 +00:00
Stephen Coyle
c2e8d57fbd Add unmaintained crate advisory for safe-api 
Renamed to `sn_api`.
 2021-02-15 16:08:19 +00:00
github-actions[bot]
7c81bd4fc3 Assigned RUSTSEC-2021-0023 to rand_core (#771) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-02-15 07:35:47 -08:00
Diggory Hardy
221ec336f9 rand_core: incorrect check on buffer length when seeding RNGs (#764) 2021-02-15 07:31:38 -08:00
Sergey "Shnatsel" Davidoff
cb9432ef2a Merge pull request #770 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0022 to yottadb
 2021-02-15 02:07:53 +01:00
Shnatsel
be43bc8c83 Assigned RUSTSEC-2021-0022 to yottadb 2021-02-15 01:03:11 +00:00
Sergey "Shnatsel" Davidoff
102fad06fd Merge pull request #769 from jyn514/ydbrust 
Add use-after-free advisory for `yottadb 1.1.0` and earlier
 2021-02-15 02:02:47 +01:00
Joshua Nelson
8b0681777f Add use-after-free advisory for yottadb 1.1.0 and earlier 
Note that this does not have an `informational = "unsound"` field
because the use-after-free can occur even with normal use of the
library, not with specially crafted or malicious usages.
 2021-02-14 19:56:22 -05:00
Sergey "Shnatsel" Davidoff
c5ebb27269 Merge pull request #768 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0021 to nb-connect
 2021-02-14 16:47:35 +01:00
Shnatsel
18b2916a5d Assigned RUSTSEC-2021-0021 to nb-connect 2021-02-14 15:42:50 +00:00
Sergey "Shnatsel" Davidoff
4f422c4e50 Merge pull request #765 from faern/nb-connect-socketaddr 
Add advisory on nb-connect SocketAddr casting
 2021-02-14 16:42:23 +01:00
Sergey "Shnatsel" Davidoff
f025efcce2 Merge pull request #766 from kornelski/master 
Fixed sized-chunks
 2021-02-14 16:31:40 +01:00
Kornel
d0689e3724 Fixed sized-chunks 2021-02-14 12:08:19 +00:00
Linus Färnstrand
2b29694072 Add advisory on nb-connect SocketAddr casting 2021-02-14 12:09:55 +01:00
github-actions[bot]
0283f676ac Assigned RUSTSEC-2020-0144 to lzw (#761) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-02-10 10:27:15 -08:00
HeroicKatora
fb29bc7093 lzw: Unmaintained (#760) 2021-02-10 10:25:38 -08:00
Dirkjan Ochtman
3421cc3e74 Add link to site (#759) 2021-02-08 07:00:49 -08:00
Sergey "Shnatsel" Davidoff
bf053cb35a Merge pull request #758 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0020 to hyper
 2021-02-06 00:06:42 +01:00
Shnatsel
4467b1f895 Assigned RUSTSEC-2021-0020 to hyper 2021-02-05 23:03:32 +00:00
Sergey "Shnatsel" Davidoff
9007ee7267 Merge pull request #757 from seanmonstar/hyper-wrong-chunked 
Add hyper wrong transfer-encoding advisory
 2021-02-06 00:02:59 +01:00
Sean McArthur
c55cf597e8 Add hyper wrong transfer-encoding advisory 2021-02-05 14:57:30 -08:00
ab-cgh
24aaac905f Add advisory URL to RUSTSEC-2021-0019 (#756) 
Co-authored-by: ABGH, C <>
 2021-02-05 12:01:59 -08:00
Tony Arcieri
79c2677cfa publish-web fix (#755) 
Uses the flow suggested here:

https://github.com/actions/checkout#push-a-commit-using-the-built-in-token
 2021-02-04 13:12:34 -08:00
Tony Arcieri
67b958f393 Have publish-web GH Action auto-publish changes (#754) 
Or at least, attempt to.
 2021-02-04 12:19:22 -08:00
Sergey "Shnatsel" Davidoff
9a17f44449 Merge pull request #752 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0019 to xcb
 2021-02-04 21:05:01 +01:00
Shnatsel
7cc4f4cb71 Assigned RUSTSEC-2021-0019 to xcb 2021-02-04 20:04:16 +00:00
Sergey "Shnatsel" Davidoff
2936159924 Merge pull request #750 from psychon/xcb 
Report various rust-xcb issues to RustSec
 2021-02-04 21:03:37 +01:00
Sergey "Shnatsel" Davidoff
2253445a08 Update RUSTSEC-0000-0000.md 2021-02-04 20:54:11 +01:00
Uli Schlachter
f2c5747e9f Report various rust-xcb issues to RustSec 
Closes: https://github.com/RustSec/advisory-db/issues/653
 2021-02-04 19:40:03 +01:00
Sergey "Shnatsel" Davidoff
7af087efc2 Merge pull request #748 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0018 to qwutils
 2021-02-04 18:21:16 +01:00
Shnatsel
11a7ea188a Assigned RUSTSEC-2021-0018 to qwutils 2021-02-04 17:20:22 +00:00
Sergey "Shnatsel" Davidoff
a257f0a447 Merge pull request #747 from ammaraskar/qwutils 
[patched] Add advisory for double-free in qwutils
 2021-02-04 18:19:44 +01:00
Ammar Askar
81081c1c77 Add advisory for double-free in qwutils 2021-02-04 09:17:53 -08:00
Sergey "Shnatsel" Davidoff
13a759a835 Merge pull request #745 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0143 to multiqueue
 2021-02-04 14:37:23 +01:00
Shnatsel
ace29ae4c1 Assigned RUSTSEC-2020-0143 to multiqueue 2021-02-04 13:37:11 +00:00
Sergey "Shnatsel" Davidoff
432a8ed091 Merge pull request #744 from JOE1994/0125-multiqueue 
multiqueue: Queues allow non-Send types to be sent to other threads, allowing data races
 2021-02-04 14:36:33 +01:00
JOE1994
00001473c7 Report 0125-multiqueue to RustSec 2021-02-03 22:01:53 -05:00
Sergey "Shnatsel" Davidoff
3ede0222d4 Merge pull request #740 from Qwaz/2020-0100-date 
RUSTSEC-2020-0100: Update date field
 2021-02-03 18:31:25 +01:00
Yechan Bae
f898b07b9a Update date field 2021-02-03 11:45:30 -05:00