OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-29 15:56:07 +01:00
Code Issues Packages Projects Releases Wiki Activity
578 Commits 1 Branch 0 Tags
a5c4d5fc0ece36d0efffe624aedbe7ecc476a83d
Commit Graph

578 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
github-actions[bot]
a5c4d5fc0e Assign RUSTSEC IDs 2020-07-09 20:02:07 +00:00
Sergey "Shnatsel" Davidoff
83f70aefc0 Merge pull request #332 from iliana/CVE-2020-15093 
tough: CVE-2020-15093 / GHSA-5q2r-92f9-4m49
 2020-07-09 22:01:12 +02:00
iliana etaoin
f17173c999 tough: CVE-2020-15093 2020-07-09 12:49:48 -07:00
CreepySkeleton
6b10ce0976 Update yaml-rust advirsory to indicate clap as non-vulnerable (#331) 2020-07-06 08:59:19 -07:00
Sergey "Shnatsel" Davidoff
ecf0648202 Merge pull request #330 from RustSec/assign-ids 
Assign RUSTSEC IDs
 2020-07-05 13:49:26 +02:00
github-actions[bot]
6b56bccc8c Assign RUSTSEC IDs 2020-07-05 11:48:09 +00:00
Sergey "Shnatsel" Davidoff
fb8d644b16 Merge pull request #319 from Qwaz/rulinalg-201 
Security advisory for AtheMathmo/rulinalg#201
 2020-07-05 13:47:30 +02:00
github-actions[bot]
c649f53838 Assign RUSTSEC-2020-0022 to ozone (#329) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-07-04 16:25:40 -04:00
Sergey "Shnatsel" Davidoff
aead4efb76 Merge pull request #328 from Qwaz/ozone 
Security advisory for bqv/ozone
 2020-07-04 22:22:31 +02:00
Yechan Bae
ee09393d32 Security advisory for bqv/ozone 2020-07-04 01:49:52 -04:00
github-actions[bot]
73b40e7d53 Assign RUSTSEC IDs (#326) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-07-03 10:11:14 -04:00
Sergey "Shnatsel" Davidoff
c05fb28d6d Merge pull request #293 from NieDzejkob/rio 
Advisory for rio
 2020-07-03 16:09:14 +02:00
Tony Arcieri
297725a166 README.md: bump maintained quarter comment 2020-07-01 15:53:49 -07:00
Yechan Bae
49fcc50d2b Reflect PR feedback and describe what might happen 2020-06-30 17:21:28 -04:00
github-actions[bot]
07ae3fb207 Assign RUSTSEC IDs (#325) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-06-30 11:55:00 -07:00
Jeff Muizelaar
6e2241c06b stb_truetype crate has been deprecated; use ttf-parser instead (#307) 2020-06-30 11:52:27 -07:00
Tony Arcieri
1dfcb1d64a .github: lint advisories after assigning ID (#324) 2020-06-30 11:50:26 -07:00
Ralf Jung
9cd619f167 make memoffset advisory informational (#317) 2020-06-30 11:49:45 -07:00
github-actions[bot]
46c23f6c94 Assign RUSTSEC IDs (#323) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2020-06-30 10:27:13 -07:00
quininer
de07a7d207 Add tokio-rustls DoS advisory (#304) 2020-06-30 02:01:58 -04:00
Alex Gaynor
48c8653408 Attempt to fix failing assign-ids task (#322) 2020-06-29 15:17:17 -07:00
Alex Gaynor
418954a939 Create github action to assign RUSTSEC ids (#311) 
* Create github action to assign RUSTSEC ids

* Bump
 2020-06-29 15:07:56 -07:00
Tony Arcieri
45495b767e .github: bump rustsec-admin cache key (#321) 
...to match the new `rustsec-admin` v0.2.0 release:

https://github.com/RustSec/rustsec-admin/pull/57
 2020-06-29 11:17:28 -07:00
Yechan Bae
8149410e8d Fix toml format error 2020-06-29 01:40:06 -04:00
Yechan Bae
7c96397ea1 Security advisory for AtheMathmo/rulinalg#201 2020-06-28 01:48:42 -04:00
Ralf Jung
ae22eb47d2 CONTRIBUTING: mention soundness issues (#314) 2020-06-22 06:41:01 -07:00
Tony Arcieri
5049594b75 Add unmaintained crate advisory for block-cipher-trait (RUSTSEC-2020-0018) (#310) 
* Add unmaintained crate advisory for `block-cipher-trait`

It's been renamed to `block-cipher`. See:

https://github.com/RustCrypto/traits/pull/139

* Assign RUSTSEC-2020-0018 to block-cipher-trait
 2020-06-10 11:22:55 -07:00
Tony Arcieri
8587ec259a Assign RUSTSEC-2020-0017 to internment (#309) 
Original PR: https://github.com/RustSec/advisory-db/pull/306
 2020-06-07 08:19:36 -07:00
Jeremy Fitzhardinge
0f5a2dc239 Add advisory for internment (#306) 
`internment` 0.3.12 has a race condition in ArcIntern::drop which can
result in use-after-free.
 2020-06-07 07:55:58 -07:00
Tony Arcieri
efef3b953e Merge pull request #303 from RustSec/RUSTSEC-2018-0017 
Assign RUSTSEC-2018-0017 to tempdir
 2020-05-17 09:33:29 -07:00
Tony Arcieri
7d4ce9ae4f Assign RUSTSEC-2018-0017 to tempdir 
Original PR: https://github.com/RustSec/advisory-db/pull/295
 2020-05-17 08:58:19 -07:00
Tony Arcieri
4853671ffa Merge pull request #295 from oherrala/tempdir 
tempdir crate has been deprecated since 2018-02-13
 2020-05-17 08:54:35 -07:00
Tony Arcieri
5e13e75907 Merge pull request #301 from RustSec/RUSTSEC-2020-0016 
Assign RUSTSEC-2020-0016 to net2
 2020-05-17 08:53:47 -07:00
Tony Arcieri
1639be6561 Assign RUSTSEC-2020-0016 to net2 
Original PR: https://github.com/RustSec/advisory-db/pull/296
 2020-05-17 08:52:19 -07:00
Tony Arcieri
a855755aa7 Merge pull request #296 from oherrala/net2 
net2 crate has been deprecated; use socket2 instead
 2020-05-17 08:50:59 -07:00
Ossi Herrala
a3c68605c7 net2 crate has been deprecated; use socket2 instead 
Fixes #285
 2020-05-13 10:45:41 +03:00
Ossi Herrala
25f622bacf tempdir crate has been deprecated since 2018-02-13. 2020-05-13 10:18:39 +03:00
Jakub Kądziołka
b1d3a5e73f Advisory for rio 2020-05-12 19:04:44 +02:00
Tony Arcieri
4565a921dd Merge pull request #286 from RustSec/RUSTSEC-2020-0015 
Assign RUSTSEC-2020-0015 to openssl-src
 2020-05-04 16:46:31 -07:00
Tony Arcieri
e44e26f397 Assign RUSTSEC-2020-0015 to openssl-src 
Original PR: https://github.com/RustSec/advisory-db/pull/277/files
 2020-05-04 16:39:42 -07:00
Tony Arcieri
f2feb205c6 Merge pull request #277 from lzutao/cve-openssl 
warn about CVE-2020-1967
 2020-05-04 16:38:10 -07:00
Tony Arcieri
e4ac8b16e7 Merge pull request #283 from Veetaha/patch-1 
Add `cargo-deny` to the list of RustSec clients
 2020-05-02 11:59:16 -07:00
Veetaha
b0bc62bdd5 Add cargo-deny to the list RustSec clients 
`cargo-deny` is an awesome tool, it seems to be the superset of `cargo-audit`. I think it is reasonable to mention it here along with `cargo-audit`.
cc @Jake-Shadle
 2020-05-02 20:27:32 +03:00
Tony Arcieri
aa789b9cbd Merge pull request #280 from Manishearth/obsolete 
RUSTSEC-2020-0011: make obsolete (closes #275)
 2020-04-26 07:06:32 -07:00
Manish Goregaokar
2b2b57668d RUSTSEC-2020-0011: make obsolete 2020-04-25 20:47:58 -07:00
Tony Arcieri
03f59c6a56 Merge pull request #279 from CAD97/patch-1 
RUSTSEC-2020-0011: make wording more objective
 2020-04-25 12:13:38 -07:00
Christopher Durham
c63704f56b RUSTSEC-2020-0011: make wording more objective 2020-04-25 15:10:50 -04:00
Tony Arcieri
0416e6aea7 Merge pull request #278 from RustSec/RUSTSEC-2020-0011/mark-as-informational 
RUSTSEC-2020-0011: mark as informational
 2020-04-25 12:02:52 -07:00
Tony Arcieri
63ca3a7793 RUSTSEC-2020-0011: mark as informational 
See discussion on https://github.com/RustSec/advisory-db/issues/275#issuecomment-619241211
 2020-04-25 12:00:31 -07:00
Lzu Tao
cff4f820ac warn about CVE-2020-1967 2020-04-25 15:38:14 +00:00