Erick Tryzelaar
bfcf9e99c2
Advisory: cookie denial of service
2017-05-07 16:06:21 -07:00
Tony Arcieri
524d876a8a
Assign RUSTSEC-2017-0004 to base64
...
Original PR:
https://github.com/RustSec/advisory-db/pull/21
2017-05-04 09:52:29 -07:00
Andrew Ayer
b9a0862f48
Advisory: base64 heap-based buffer overflow
2017-05-03 17:05:46 -07:00
Tony Arcieri
e6b5f1a74f
Assign RUSTSEC-2017-0003 to security-framework
...
Original PR:
https://github.com/RustSec/advisory-db/pull/16
2017-03-15 22:34:43 -07:00
Steven Fackler
ffb475d466
Advisory: security-framework hostname verification bypass
2017-03-15 11:47:14 -07:00
Tony Arcieri
e867ef7194
Assign RUSTSEC-2017-0002 to hyper
...
Original PR:
https://github.com/RustSec/advisory-db/pull/12
2017-02-28 09:02:18 -08:00
Sean McArthur
4597f51b45
add advisory for hyper message splitting vulnerability
2017-02-27 15:13:17 -08:00
Tony Arcieri
05af1866b1
Revert "Merge pull request #8 from RustSec/rename-package-to-crate-name"
...
Cargo uses "package" in Cargo.lock, so there is wisdom to using "package"
instead of "crate_name"
This reverts commit 986c090c069556f0fdee
2017-02-26 00:26:22 -08:00
Tony Arcieri
f4dbb0d82c
Rename package TOML attribute to crate_name
...
The correct name for a Rust package is a "crate", so something with "crate" is
less ambiguous than "package".
However, "crate" itself is a Rust keyword. To avoid clashes in Rust code which
uses this same attribute name, "crate_name" can be used instead unambigously.
2017-02-25 23:13:36 -08:00
Tony Arcieri
dc3301d1e4
Add date to RUSTSEC-2017-0001
2017-02-25 16:47:52 -08:00
Tony Arcieri
6f3b266664
Assign RUSTSEC-2017-0001 to sodiumoxide
...
Original PR:
https://github.com/RustSec/advisory-db/pull/4
2017-02-25 16:46:26 -08:00
Tony Arcieri
1a18a429fc
Advisory: sodiumoxide degenerate public keys
...
Fixed in sodiumoxide 0.0.14.
See: https://github.com/dnaq/sodiumoxide/issues/154
2017-02-25 16:28:44 -08:00
