OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-01 17:20:33 +01:00
Code Issues Packages Projects Releases Wiki Activity
896 Commits 1 Branch 0 Tags
b08a98acc74a4891bae649bf69f065fe2ded64fc
Commit Graph

896 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Yechan Bae
b08a98acc7 Fix typo in http CVE number (#564) 2021-01-15 07:32:15 -08:00
Jeffrey Robinson
14b29c77eb Typo in RUSTSEC-2020-0013 (#562) 
Minor typo.
 2021-01-14 09:57:27 -08:00
Tony Arcieri
8e1ad08eee Publish Web: fix YAML indenting (#559) 2021-01-13 06:06:20 -08:00
Tony Arcieri
50451dd5b8 Publish Web: fix rustsec-admin install (#558) 
We do still need to check if `rustsec-admin` is installed, as an error
is returned if it's already installed.
 2021-01-13 06:04:12 -08:00
Tony Arcieri
a3efac5977 Add "Publish Web" GitHub Action (#557) 
Automatically rebuilds the contents of the `gh-pages` branch on merge
 2021-01-13 06:00:38 -08:00
Matt Brubeck
7feb037b84 RUSTSEC-2020-0017.md (use-after-free in internment) is fixed (#554) 
The vulnerability in this report was fixed in internment 0.4.0.  For details, see
https://github.com/droundy/internment/issues/11#issuecomment-758862385.
 2021-01-12 11:05:27 -08:00
Sergey "Shnatsel" Davidoff
fa47ec0c0b Merge pull request #553 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0003 to smallvec
 2021-01-08 19:15:06 +01:00
Shnatsel
519862dda6 Assigned RUSTSEC-2021-0003 to smallvec 2021-01-08 18:14:52 +00:00
Sergey "Shnatsel" Davidoff
5851ec6321 Merge pull request #552 from mbrubeck/smallvec 
smallvec: Buffer overflow in insert_many
 2021-01-08 19:14:20 +01:00
Matt Brubeck
dfe84fd15f smallvec: Buffer overflow in insert_many 2021-01-08 09:57:23 -08:00
Sergey "Shnatsel" Davidoff
aa3b156442 do not suggest pretty_assertions as an alternative 
because it depends on `difference`
 2021-01-07 05:01:36 +01:00
Sergey "Shnatsel" Davidoff
0ac1862560 Merge pull request #551 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0095 to difference
 2021-01-06 17:15:28 +01:00
Shnatsel
87208edb17 Assigned RUSTSEC-2020-0094 to reffers, RUSTSEC-2020-0095 to difference 2021-01-06 16:13:10 +00:00
Sergey "Shnatsel" Davidoff
a3c2e93679 Merge pull request #550 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0094 to reffers
 2021-01-06 17:12:42 +01:00
Sergey "Shnatsel" Davidoff
9ff73c540d Merge pull request #538 from brightly-salty/difference 
Create advisory for difference
 2021-01-06 17:12:25 +01:00
tarcieri
ccb4b2a526 Assigned RUSTSEC-2020-0094 to reffers 2021-01-06 16:12:17 +00:00
Youngsuk Kim
89a73839e7 add advisory for data race in reffers (#533) 2021-01-06 08:10:43 -08:00
github-actions[bot]
31d74c5408 Assigned RUSTSEC-2021-0002 to interfaces2 (#549) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2021-01-06 08:07:19 -08:00
Sergey "Shnatsel" Davidoff
76a2a25ecc Merge pull request #545 from dalance/add_interfaces2 
Add advisory for interfaces2
 2021-01-06 17:06:05 +01:00
github-actions[bot]
4ef9441cbd Assigned RUSTSEC-2021-0001 to mdbook (#548) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-01-04 09:50:29 -08:00
Tony Arcieri
0708242759 Bump rustsec-admin to v0.3.3 (#547) 
Should address the bug we encountered assigning an ID to the first
advisory for a given year:

https://github.com/RustSec/advisory-db/runs/1644743652
 2021-01-04 09:35:34 -08:00
Yechan Bae
846dfb93a3 Update CVE numbers (#542) 2021-01-04 09:02:59 -08:00
Pietro Albini
71c5fdb926 add CVE-2020-26297 to mdbook <= 0.4.4 (#546) 2021-01-04 07:55:43 -08:00
dalance
14a3b0cead Add advisory for interfaces2 2021-01-04 18:34:12 +09:00
Yechan Bae
79832ae026 Add CVE number for RUSTSEC-2020-0091 (#541) 2020-12-30 18:47:09 -05:00
brightly-salty
ae31f73141 Create advisory for difference 2020-12-20 20:32:18 -06:00
Sergey "Shnatsel" Davidoff
65fc46c831 Merge pull request #537 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0093 to async-h1
 2020-12-18 17:22:02 +01:00
Shnatsel
06a9a03d3b Assigned RUSTSEC-2020-0093 to async-h1 2020-12-18 16:21:43 +00:00
Sergey "Shnatsel" Davidoff
34cd60013f Merge pull request #536 from jbr/async-h1-request-smuggling-unread-bodies 
File an http request smuggling advisory for async-h1 < 2.3.0
 2020-12-18 17:21:11 +01:00
Sergey "Shnatsel" Davidoff
ce0f9692ff drop commented-out fields 2020-12-18 17:21:04 +01:00
Jacob Rothstein
f8b4364f88 maybe appease linter? 2020-12-17 17:57:48 -08:00
Jacob Rothstein
fbb1d34eeb File an advisory for async-h1 < 2.3.0 2020-12-17 17:50:01 -08:00
github-actions[bot]
ac20d3a702 Assigned RUSTSEC-2020-0092 to concread (#535) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2020-12-17 14:42:35 -05:00
Youngsuk Kim
56276f96a6 Add advisory for data race in concread (#532) 2020-12-17 14:39:03 -05:00
github-actions[bot]
f64c4fc8bb Assigned RUSTSEC-2020-0091 to arc-swap (#531) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-11 10:31:21 -08:00
Michal 'vorner' Vaner
80d45a8d18 Dangling reference in arc_swap::access::Map (#530) 2020-12-11 10:09:15 -08:00
Lyndon Brown
4e0c71a0d6 Fix wrong url (#529) 
Mistake from fb2a1a6c47
 2020-12-11 06:38:51 -08:00
github-actions[bot]
189213fa5e Assigned RUSTSEC-2020-0090 to thex (#527) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-09 07:44:25 -08:00
Ammar Askar
f71bc5a6d3 Add advisory for data race in thex (#523) 2020-12-09 07:41:23 -08:00
github-actions[bot]
a043a90d0c Assigned RUSTSEC-2020-0089 to nanorand (#526) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-09 07:33:38 -08:00
aspen
e90491ebc6 Add nanorand 0.5.0 RNG weakness (#525) 2020-12-09 07:32:30 -08:00
Sergey "Shnatsel" Davidoff
0588583ef3 Merge pull request #522 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0088 to magnetic
 2020-12-08 19:56:53 +01:00
tarcieri
955ad994f1 Assigned RUSTSEC-2020-0088 to magnetic 2020-12-07 17:34:10 +00:00
Yechan Bae
bd3cb8dd83 Report 0050-magnetic to RustSec (#519) 2020-12-07 09:33:32 -08:00
github-actions[bot]
f17cd12f02 Assigned RUSTSEC-2020-0087 to try-mutex (#521) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-07 09:33:02 -08:00
Yechan Bae
639d1b1be1 Report 0047-try-mutex to RustSec (#517) 2020-12-07 09:27:27 -08:00
github-actions[bot]
ed9dba3262 Assigned RUSTSEC-2020-0083 to safe_app, RUSTSEC-2020-0084 to safe_authenticator, RUSTSEC-2020-0085 to safe_vault, RUSTSEC-2020-0086 to safe_core (#520) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2020-12-07 09:22:02 -08:00
Stephen Coyle
61d315ae6f Renamed crates (#518) 
- `safe_core` has been renamed to `sn_client`
- `safe_app` has been superseded by `sn_client`
- `safe_authenticator` has been superseded by `sn_client`.
- `safe_vault` has been renamed to `sn_node`.
 2020-12-07 09:17:30 -08:00
Yechan Bae
a24932e220 Update example advisory text (#513) 2020-12-07 07:31:37 -08:00
Matt Brubeck
dec05d79ab Minor changes to wording of RUSTSEC-2020-0082 (#516) 
This clarifies that UB can happen during unwinding, and not only after
catching a panic.
 2020-12-06 15:25:23 -05:00