advisory-db

mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-28 23:36:15 +01:00

Author	SHA1	Message	Date
github-actions[bot]	d30ca83160	Assigned RUSTSEC-2023-0057 to inventory (#1774 ) Co-authored-by: amousset <amousset@users.noreply.github.com>	2023-09-10 19:34:00 +02:00
David Tolnay	ca0b8b9614	Inventory 0.1 is unsound (allows std access before init of Rust runtime) (#1773 )	2023-09-10 19:31:21 +02:00
Alexis Mousset	0fcce3f7cb	Bump rustsec-admin to 0.8.7 (#1772 )	2023-09-08 09:30:37 -06:00
Preston Thorpe	370cdc73f5	add additional replacement for ansi_term (#1768 ) * add additional replacement for ansi_term * move ansiterm to the top of the list --------- Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>	2023-09-07 00:52:31 +02:00
github-actions[bot]	d437be8576	Assigned RUSTSEC-2023-0056 to vm-memory (#1767 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-09-06 19:18:09 +02:00
Patrick Roy	c9fe870edd	Import CVE-2023-41051 as RustSec advisory (#1766 ) Signed-off-by: Patrick Roy <roypat@amazon.co.uk>	2023-09-06 19:17:14 +02:00
dependabot[bot]	53652d63d2	Bump actions/checkout from 3 to 4 (#1765 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-09-04 16:33:17 +02:00
github-actions[bot]	8ac7d56b75	Assigned RUSTSEC-2023-0055 to lexical (#1764 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-09-03 20:18:34 +02:00
Sergey "Shnatsel" Davidoff	a6f3295ed6	Add an advisory for lexical (#1763 ) * Add an advisory for lexical * fix formatting	2023-09-03 20:17:39 +02:00
Brian Smith	a6c90b9cd0	Update webpki RUSTSEC-2023-0052 advisory. (#1762 ) * Indicate release version that the fix landed in. * Remove unnecessary noise from the text.	2023-08-30 18:01:29 -04:00
Alexis Mousset	cbf97de9b7	Add documentation for advisories licenses (#1761 )	2023-08-28 15:52:35 +00:00
Alexis Mousset	65e32a757b	Sync advisories ids from GitHub (#1760 )	2023-08-27 15:52:52 +00:00
Sandro-Alessio Gierens	d401af5af8	Add jzon as alternative recommendation for json (#1759 ) Signed-off-by: Sandro-Alessio Gierens <sandro@gierens.de>	2023-08-25 17:52:15 +00:00
github-actions[bot]	5373b7ebb0	Assigned RUSTSEC-2023-0054 to mail-internals (#1758 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-08-24 10:21:13 +00:00
наб	3f70263445	mail-internals memory corruption (#1741 )	2023-08-24 10:20:06 +00:00
Samuel Moelius	5bde16559d	README.md: Link to HOWTO_UNMAINTAINED.md (#1754 ) Closes #1748	2023-08-23 06:14:50 -06:00
github-actions[bot]	214d69f125	Assigned RUSTSEC-2023-0052 to webpki, RUSTSEC-2023-0053 to rustls-webpki (#1753 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-08-22 12:45:02 +00:00
ctz	ff6edc9823	CPU denial of service in rustls-webpki and webpki crates (#1752 ) * Add rustls-webpki denial of service bug * Add webpki denial of service bug	2023-08-22 12:44:03 +00:00
Sandro-Alessio Gierens	7600054d6c	Add uzers as alternative recommendation for users (#1751 ) Signed-off-by: Sandro-Alessio Gierens <sandro@gierens.de>	2023-08-21 10:35:45 +00:00
github-actions[bot]	ae12a8f93f	Assigned RUSTSEC-2023-0051 to dlopen_derive (#1747 ) Co-authored-by: amousset <amousset@users.noreply.github.com>	2023-08-19 12:29:52 +02:00
Samuel Moelius	f7511e0fa3	Add unmaintained `dlopen_derive` advisory (#1735 )	2023-08-19 12:23:53 +02:00
github-actions[bot]	f76ea1c128	Assigned RUSTSEC-2023-0050 to multipart (#1746 ) Co-authored-by: amousset <amousset@users.noreply.github.com>	2023-08-18 22:38:40 +02:00
Sanpi	d98c58dda0	Add unmaintained multipart crate (#1679 )	2023-08-18 22:35:57 +02:00
github-actions[bot]	58aa4552f3	Assigned RUSTSEC-2022-0093 to ed25519-dalek (#1745 ) Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>	2023-08-14 11:14:25 -06:00
Tony Arcieri	9012b65f10	Add Double Public Key Signing Function Oracle Attack on `ed25519-dalek` (#1744 ) Closes #1360	2023-08-14 11:12:30 -06:00
github-actions[bot]	15e3b1b071	Assigned RUSTSEC-2023-0049 to tui (#1740 ) Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>	2023-08-07 07:27:47 -06:00
Orhun Parmaksız	e27f9d4f8a	Add unmaintained `tui` advisory (#1739 )	2023-08-07 07:26:03 -06:00
Alexis Mousset	98e8483ac1	Update aliases from GHSA OSV export (#1734 )	2023-07-29 19:20:00 +02:00
github-actions[bot]	926c7faf15	Assigned RUSTSEC-2023-0048 to intaglio (#1733 ) Co-authored-by: amousset <amousset@users.noreply.github.com>	2023-07-27 00:15:10 +02:00
Ryan Lopopolo	3cf8a9354f	Add advisory for unsoundness in intaglio symbol interners (#1732 ) See: - https://github.com/artichoke/intaglio/issues/235 - https://github.com/artichoke/intaglio/pull/236 - https://github.com/artichoke/intaglio/releases/tag/v1.9.0	2023-07-27 00:11:22 +02:00
github-actions[bot]	4aa517564d	Assigned RUSTSEC-2023-0047 to lmdb-rs (#1730 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-07-18 16:37:16 +00:00
Rafael	782315865b	report unsoundness of lmdb-rs (#1724 ) * report unsoundness of lmdb-rs * report unsoundness of lmdb-rs	2023-07-18 16:36:20 +00:00
Alexis Mousset	1d12a1c2e3	Fix typos (#1729 )	2023-07-15 15:07:13 +00:00
Alexis Mousset	5ceeefcbba	Bump rustsec-admin to 0.8.6 (#1728 )	2023-07-08 16:04:33 +02:00
Alexis Mousset	c2b1e4cab4	Update aliases from GHSA OSV export (#1727 )	2023-07-08 14:30:19 +02:00
Linus Färnstrand	1f538e6f3b	Update RUSTSEC-2021-0145.md with stable IsTerminal (#1725 ) Since `IsTerminal` is now stable, this CVE can recommend that first	2023-06-29 12:21:59 +00:00
github-actions[bot]	9cf72357c8	Assigned RUSTSEC-2023-0046 to cyfs-base (#1723 ) Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>	2023-06-22 09:43:08 -06:00
Rafael	a64182cf0f	report misaligned pointer dereference in cyfs-base (#1718 )	2023-06-22 09:42:06 -06:00
github-actions[bot]	76c37849b6	Assigned RUSTSEC-2023-0045 to memoffset (#1722 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-06-21 12:29:36 +00:00
Kisaragi	27aa255f11	Add advisory to `memoffset` (#1721 ) * Add advisory to `memoffset` * fix invalid category	2023-06-21 12:23:59 +00:00
github-actions[bot]	29b04da119	Assigned RUSTSEC-2023-0044 to openssl (#1720 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-06-20 17:34:12 -04:00
Alex Gaynor	e8534eadc5	Report buffer-overread in OpenSSL (#1719 ) * Report buffer-overread in OpenSSL * Rename RUSTSEC-0000-0000 to RUSTSEC-0000-0000.md	2023-06-20 21:32:25 +00:00
joshua-maros	37abf6e463	Update RUSTSEC-2023-0042 to reflect patch. (#1717 )	2023-06-15 11:07:09 +00:00
github-actions[bot]	13b9455e9f	Assigned RUSTSEC-2023-0043 to ftp (#1714 ) Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>	2023-06-14 07:23:36 -06:00
Christian Visintin	3ad954ae91	Add unmaintained ftp crate (#1612 )	2023-06-14 07:21:57 -06:00
Alexis Mousset	84c633df9c	Update aliases from GHSA OSV export (#1693 )	2023-06-13 15:10:24 +02:00
github-actions[bot]	ea9ad160b6	Assigned RUSTSEC-2023-0042 to ouroboros (#1708 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-06-12 02:10:09 +02:00
joshua-maros	ae311156f9	Ouroboros Soundess Issue (#1707 )	2023-06-12 02:08:57 +02:00
github-actions[bot]	af3f3d503f	Assigned RUSTSEC-2023-0041 to trust-dns-server (#1704 ) Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>	2023-06-03 19:41:41 +00:00
Jonas Bushart	a14884ebf4	Vulnerability in trust-dns and trust-dns-server (#1703 ) An attacker can form packet loops between vulnerable instances leading to a denial-of-service for both network and CPU resources.	2023-06-03 19:40:41 +00:00

1 2 3 4 5 ...

2038 Commits