OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-29 15:56:07 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,927 Commits 1 Branch 0 Tags
bb831bb8d2ce243b1fc1bd8755d605cc4e889aec
Commit Graph

1927 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
github-actions[bot]
bb831bb8d2 Assigned RUSTSEC-2021-0148 to nphysics3d, RUSTSEC-2021-0149 to nphysics2d (#1636) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-03-12 09:34:14 +11:00
damienrg
1d79443ae8 Add unmaintained advisory for nphysics (#1624) 
There is no activity since July 2021 and the maintainer has advised
that this crate is passively-maintained since January 2021.
 2023-03-12 09:32:03 +11:00
github-actions[bot]
292b3a8437 Assigned RUSTSEC-2023-0019 to kuchiki (#1634) 
Co-authored-by: amousset <amousset@users.noreply.github.com>
 2023-03-07 12:56:33 +01:00
sidunder
31bfe7f68c Add unmaintained advisory kuchiki (#1632) 
Co-authored-by: sidunder <sidunder@users.noreply.github.com>
 2023-03-07 12:55:41 +01:00
github-actions[bot]
b170dda7f8 Assigned RUSTSEC-2023-0018 to remove_dir_all (#1629) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-03-04 21:50:30 +00:00
Alexander Kjäll
85d45d26e1 remove_dir_all have TOCTOU race condition (#1628) 
* remove_dir_all have TOCTOU race condition
reported in GHSA-mc8h-8q98-g5hr

* Replace GHSA description with an excerpt form upstream changelog, add GHSA to references

---------

Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2023-03-04 21:49:41 +00:00
github-actions[bot]
8124c2ef69 Assigned RUSTSEC-2023-0017 to maligned (#1626) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-03-04 02:16:44 +00:00
Nugine
94f44e826b maligned::align_first causes incorrect deallocation (#1625) 2023-03-04 02:15:19 +00:00
github-actions[bot]
9a5b100802 Assigned RUSTSEC-2023-0016 to partial_sort (#1622) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-25 18:11:27 +01:00
Niklas Fiekas
6761c6902d Add informational advisory for partial_sort out-of-bounds read (#1617) 2023-02-25 18:04:48 +01:00
github-actions[bot]
81e6e5a8e1 Assigned RUSTSEC-2022-0091 to tauri (#1621) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-25 16:16:50 +01:00
github-actions[bot]
bf247555bd Assigned RUSTSEC-2023-0015 to ascii (#1619) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-25 16:13:09 +01:00
sidunder
eadc6fea9e Add advisory Tauri filesystem scope bypass (#1571) 
* Add advisory Tauri filesystem scope bypass

* Fix version ranges

---------

Co-authored-by: sidunder <sidunder@users.noreply.github.com>
Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2023-02-25 15:31:37 +01:00
Kisaragi
6e74bc0d18 Add ascii advisory (#1618) 
* Add ascii advisory

* Strip unnecessary comments

* Fix version range specification and category

* Change fixed version specification to `>= 0.9.3`

---------

Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2023-02-25 15:30:18 +01:00
github-actions[bot]
0e63414bd1 Assigned RUSTSEC-2022-0090 to libsqlite3-sys (#1607) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2023-02-14 07:38:31 -05:00
sidunder
1a941a3d4c Add sqlite advisory (#1599) 
Co-authored-by: sidunder <sidunder@users.noreply.github.com>
 2023-02-14 07:38:01 -05:00
github-actions[bot]
1942528507 Assigned RUSTSEC-2023-0014 to cortex-m-rt (#1606) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2023-02-14 07:37:53 -05:00
Alex Martens
90f7279a2f Add soundness advisory for cortex-m-rt (#1601) 2023-02-14 07:37:12 -05:00
Robert Bartlensky
c536da77d7 Update RUSTSEC-2020-0097.md (#1600) 
This issue has been patched in versions >=v1.0 (see [comment]).

[comment]: https://github.com/rust-x-bindings/rust-xcb/issues/93#issuecomment-966921127
 2023-02-13 15:34:01 +01:00
Sergey "Shnatsel" Davidoff
8dcbf2905f Better docs (#1598) 
* More descriptive example advisory

* README: note that all Cargo selectors are supported
 2023-02-11 15:37:46 +01:00
github-actions[bot]
b83953fdf1 Assigned RUSTSEC-2020-0167 to pnet_packet (#1596) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-09 04:11:42 +01:00
Alexis Mousset
988dc5fe72 Fix some typos (#1593) 2023-02-09 04:11:29 +01:00
sidunder
516ebee12d Add advisory for pnet_packet (#1595) 
Co-authored-by: sidunder <sidunder@users.noreply.github.com>
 2023-02-09 04:10:46 +01:00
David Krasnitsky
b485cf4db1 Update RUSTSEC-2020-0071.md (#1594) 
The sources links were published without a hyperlink at: https://rustsec.org/advisories/RUSTSEC-2020-0071

This update is using explicit markdown hyperlinks in hopes that it will be rendered and published correctly.
 2023-02-08 16:06:38 +01:00
David Krasnitsky
cb6cfde9a9 Update RUSTSEC-2020-0071.md (#1591) 2023-02-08 15:08:26 +01:00
github-actions[bot]
8a1400e316 Assigned RUSTSEC-2022-0089 to aliyun-oss-client (#1590) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-07 23:07:40 +01:00
sidunder
c619370146 Add advisory aliyun-oss-client (#1589) 
fix: Advisory category key

Co-authored-by: sidunder <sidunder@users.noreply.github.com>
 2023-02-07 23:05:59 +01:00
github-actions[bot]
feb5cddd6a Assigned RUSTSEC-2023-0013 to openssl-src (#1588) 
Co-authored-by: amousset <amousset@users.noreply.github.com>
 2023-02-07 21:10:12 +01:00
Alexis Mousset
0f3d1597de Add CVE-2023-0401 for openssl-src (#1584) 2023-02-07 21:08:43 +01:00
github-actions[bot]
daa52cadfb Assigned RUSTSEC-2023-0012 to openssl-src (#1587) 
Co-authored-by: amousset <amousset@users.noreply.github.com>
 2023-02-07 21:08:34 +01:00
Alexis Mousset
3cfb897093 Add CVE-2023-0217 for openssl-src (#1583) 2023-02-07 21:07:48 +01:00
github-actions[bot]
19c2e8afe1 Assigned RUSTSEC-2023-0011 to openssl-src (#1586) 
Co-authored-by: amousset <amousset@users.noreply.github.com>
 2023-02-07 21:07:36 +01:00
Alexis Mousset
3e3631fd47 Add CVE-2023-0216 for openssl-src (#1582) 2023-02-07 21:07:00 +01:00
github-actions[bot]
94fdfaf7ea Assigned RUSTSEC-2023-0010 to openssl-src (#1585) 
Co-authored-by: amousset <amousset@users.noreply.github.com>
 2023-02-07 21:06:31 +01:00
Alexis Mousset
1445e63788 Add CVE-2022-4450 for openssl-src (#1580) 2023-02-07 21:05:35 +01:00
github-actions[bot]
b324cf920f Assigned RUSTSEC-2023-0009 to openssl-src (#1581) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-07 20:54:58 +01:00
Alexis Mousset
818cdec050 Add CVE-2023-0215 for openssl-src (#1579) 2023-02-07 20:54:15 +01:00
github-actions[bot]
8d1c5992c3 Assigned RUSTSEC-2023-0008 to openssl-src (#1578) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-07 20:47:22 +01:00
Alexis Mousset
4bf8b4c3bd Add CVE-2022-4203 for openssl-src (#1577) 2023-02-07 20:46:48 +01:00
github-actions[bot]
d70e7f95b4 Assigned RUSTSEC-2023-0007 to openssl-src (#1576) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-07 20:42:47 +01:00
Alexis Mousset
a0530f108d Add CVE-2022-4304 for openssl-src (#1575) 2023-02-07 20:42:22 +01:00
github-actions[bot]
56f79c7b45 Assigned RUSTSEC-2023-0006 to openssl-src (#1574) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-07 20:39:21 +01:00
Alexis Mousset
58e20bb766 Add CVE-2023-0286 for openssl-src (#1573) 2023-02-07 20:38:36 +01:00
github-actions[bot]
bb92d2d5d8 Assigned RUSTSEC-2022-0088 to tauri (#1572) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-05 19:48:17 +01:00
sidunder
b621b4642a Add advisory for Tauri readDir (#1568) 
Co-authored-by: sidunder <--unset>
 2023-02-05 19:47:30 +01:00
Sergey "Shnatsel" Davidoff
a219aa4228 Drop mentions of iwantacve.org (#1570) 
Fixes #1569
 2023-02-05 14:49:07 +01:00
aviyam181199
eb6f2f5a54 Update RUSTSEC-2023-0004.md (#1567) 
Changed publish date from September 1st to January 9th
 2023-02-04 14:29:07 +01:00
Anders Evensen
a8bafd3092 Fix typo in claim (#1566) 2023-02-04 21:58:43 +11:00
github-actions[bot]
3cda32257a Assigned RUSTSEC-2023-0005 to tokio (#1565) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-02-03 09:59:01 +11:00
pinkforest(she/her)
061297a5a1 Add tokio io::ReadHalf<T>::unsplit unsound (#1552) 
* Add tokio unsound

* Remove @ pings

* Wording

---------

Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2023-02-02 23:50:40 +01:00