advisory-db

mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-27 23:08:06 +01:00

Author	SHA1	Message	Date
Alex Gaynor	de8a052d3e	Tell people to delete comments in the example advisory	2019-08-31 15:27:07 -04:00
Tony Arcieri	07da5c8ed5	Merge pull request #133 from RustSec/RUSTSEC-2019-0013 Assign RUSTSEC-2019-0013 to spin	2019-08-28 10:36:26 -07:00
Tony Arcieri	44dc01298e	Assign RUSTSEC-2019-0013 to spin Original PR: https://github.com/RustSec/advisory-db/pull/132	2019-08-28 10:11:01 -07:00
Tony Arcieri	50a678280c	Merge pull request #132 from 64/master Report vulnerability in spin crate's RwLock impl	2019-08-28 10:09:24 -07:00
Matt Taylor	5568479c48	Clarify that users of Once are not affected	2019-08-28 06:37:10 +01:00
Matt Taylor	3c55761403	Report vulnerability in spin crate's RwLock impl	2019-08-27 20:09:09 +01:00
Tony Arcieri	f9de4aed5b	Merge pull request #129 from RalfJung/memoffset actually memoffset also had an uninit-drop vuln	2019-07-20 10:24:42 -07:00
Ralf Jung	9ec1ad0a9c	typo	2019-07-20 13:45:36 +02:00
Ralf Jung	7e3423c7ec	actually memoffset also had an uninit-drop vuln, and that affects all versions ever published	2019-07-20 12:56:59 +02:00
Tony Arcieri	ce7e93d4a9	Merge pull request #128 from RustSec/RUSTSEC-2019-0012 Assign RUSTSEC-2019-0012 to smallvec	2019-07-19 14:18:21 -07:00
Tony Arcieri	3a175b7b37	Assign RUSTSEC-2019-0012 to smallvec Original PR: https://github.com/RustSec/advisory-db/pull/127/	2019-07-19 14:12:22 -07:00
Tony Arcieri	587ac0152c	Merge pull request #127 from Shnatsel/patch-1 Add advisory for smallvec issue #149	2019-07-19 13:47:20 -07:00
Sergey "Shnatsel" Davidoff	150700481b	Update RUSTSEC-0000-0000.toml	2019-07-19 21:45:40 +02:00
Sergey "Shnatsel" Davidoff	3b810f1c13	Add advisory for smallvec issue #149	2019-07-19 21:35:39 +02:00
Tony Arcieri	b8451d4f7f	Merge pull request #126 from RustSec/RUSTSEC-2019-0011 Assign RUSTSEC-2019-0011 to memoffset	2019-07-17 10:02:13 -07:00
Tony Arcieri	4d673eedf4	Assign RUSTSEC-2019-0011 to memoffset Original PR: https://github.com/RustSec/advisory-db/pull/124	2019-07-17 09:50:31 -07:00
Tony Arcieri	32d6ae5022	Merge pull request #124 from RalfJung/memoffset add memoffset issue	2019-07-17 09:43:02 -07:00
Tony Arcieri	d18235728a	Merge branch 'master' into memoffset	2019-07-17 08:37:20 -07:00
Tony Arcieri	a081494d7e	Merge pull request #125 from RustSec/update-deps Update dependencies	2019-07-16 12:39:44 -07:00
Tony Arcieri	e3b1fc14bc	Update dependencies - `gumdrop` v0.6 - `rustsec` v0.12 - `crates-io-api` v0.5	2019-07-16 12:15:09 -07:00
Ralf Jung	148b3d2dd0	add memoffset issue	2019-07-16 15:51:12 +02:00
Tony Arcieri	f7a0482e0f	Merge pull request #123 from RustSec/RUSTSEC-2019-0010 Assign RUSTSEC-2019-0010 to libflate	2019-07-07 11:34:38 -07:00
Tony Arcieri	8b88d66355	Assign RUSTSEC-2019-0010 to libflate Original PR: https://github.com/RustSec/advisory-db/pull/122	2019-07-07 11:25:05 -07:00
Tony Arcieri	27358aef48	Merge pull request #122 from Shnatsel/libflate-advisory Add advisory for libflate	2019-07-07 10:49:08 -07:00
Sergey "Shnatsel" Davidoff	ab8ae78368	Merge branch 'master' into libflate-advisory	2019-07-07 18:45:59 +02:00
Sergey "Shnatsel" Davidoff	5eacb752b4	improve summary	2019-07-07 18:45:21 +02:00
Sergey "Shnatsel" Davidoff	6714149494	Add advisory for libflate	2019-07-07 18:43:49 +02:00
Tony Arcieri	7c5fccf193	Merge pull request #121 from RustSec/RUSTSEC-2019-0008/fix-link RUSTSEC-2019-0008: fix link to disclosure PR	2019-07-03 08:07:32 -07:00
Tony Arcieri	985c55342a	RUSTSEC-2019-0008: fix link to disclosure PR	2019-07-03 07:37:05 -07:00
Tony Arcieri	b37a57de89	Merge pull request #120 from RustSec/RUSTSEC-2019-0009 Assign RUSTSEC-2019-0009 to smallvec	2019-07-03 07:23:03 -07:00
Tony Arcieri	a20910b79f	Assign RUSTSEC-2019-0009 to smallvec Original PR: https://github.com/RustSec/advisory-db/pull/119	2019-07-03 06:57:06 -07:00
Tony Arcieri	09936b6d4b	Merge pull request #119 from Shnatsel/patch-1 Add advisory for SmallVec issue #148	2019-07-02 15:21:43 -07:00
Sergey "Shnatsel" Davidoff	2cbddfd81d	Drop comments from new smallvec advisory	2019-07-02 22:55:15 +02:00
Sergey "Shnatsel" Davidoff	7af1eac5b1	Rename tentative advisory to please CI	2019-06-30 20:11:34 +02:00
Sergey "Shnatsel" Davidoff	144eb01eef	Add advisory for SmallVec issues #148	2019-06-30 20:04:20 +02:00
Tony Arcieri	7d2f62d5ed	Merge pull request #118 from RustSec/contributing/yanking CONTRIBUTING.md: Recommend yanking affected versions (closes #74)	2019-06-25 17:34:12 -07:00
Tony Arcieri	6890db2d53	CONTRIBUTING.md: Recommend yanking affected versions (closes #74 ) This seems like the best advice we can give for now	2019-06-25 17:29:54 -07:00
Tony Arcieri	c49ac2cf3f	Merge pull request #117 from RustSec/RUSTSEC-2019-0008 Assign RUSTSEC-2019-0008 to simd-json	2019-06-24 13:31:19 -07:00
Tony Arcieri	f0a801979c	Assign RUSTSEC-2019-0008 to simd-json Original PR: https://github.com/RustSec/advisory-db/pull/116	2019-06-24 13:20:43 -07:00
Tony Arcieri	003d42c27e	Merge pull request #116 from Licenser/simd-json-pr-27 Add advisory for segfault bug in simd-json.rs	2019-06-24 13:11:21 -07:00
Heinz N. Gies	8134840ade	Remove comments and fix spelling	2019-06-24 21:11:55 +02:00
Heinz N. Gies	f65960fb51	Add advisory for segfault bug in simd-json.rs	2019-06-24 21:11:55 +02:00
Tony Arcieri	fd759b72f2	Merge pull request #115 from RustSec/RUSTSEC-2019-0007 Assign RUSTSEC-2019-0007 to asn1_der	2019-06-24 10:20:14 -07:00
Tony Arcieri	602f9252e1	Assign RUSTSEC-2019-0007 to asn1_der Original PR: https://github.com/RustSec/advisory-db/pull/113	2019-06-24 09:48:05 -07:00
Tony Arcieri	c1a4315346	Merge pull request #113 from KizzyCode/master Filing issue for `asn1_der`	2019-06-24 09:46:17 -07:00
Tony Arcieri	67edcf34e4	Merge branch 'master' into master	2019-06-24 09:32:01 -07:00
Tony Arcieri	4d8795f676	Merge pull request #114 from 8573/8573/use-more-informative-wording-from-RS-2019-0005-in-RS-2019-0006/1 RUSTSEC-2019-0006: Use -0005's format vuln wording	2019-06-24 09:31:29 -07:00
c74d	63fbe9df35	RUSTSEC-2019-0006: Use -0005's format vuln wording As filed, advisory RUSTSEC-2019-0006 simply notes that certain functions in the covered crate create a "format vulnerability". This patch, following up on [an exchange of comments on GitHub][1], edits advisory RUSTSEC-2019-0006 to summarize the risk introduced by a format vulnerability, copying the wording of the associated advisory RUSTSEC-2019-0005. [1]: <https://github.com/RustSec/advisory-db/pull/107#pullrequestreview-250212575>	2019-06-23 00:41:31 +00:00
KizzyCode	2bc9806042	Removed comments	2019-06-22 00:17:25 +02:00
KizzyCode	6117c44711	Removed erroneous unaffected versions	2019-06-22 00:05:04 +02:00

1 2 3 4 5 ...

271 Commits