OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-01 17:20:33 +01:00
Code Issues Packages Projects Releases Wiki Activity
349 Commits 1 Branch 0 Tags
e2bfe15a4dcd0f1461799aae476a8d7b15726b36
Commit Graph

349 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tony Arcieri
e2bfe15a4d Merge pull request #184 from RustSec/github-actions 
Switch to GitHub Actions
 2019-10-07 21:14:56 -07:00
Tony Arcieri
a6400213ca Switch to GitHub Actions 2019-10-07 21:04:16 -07:00
Tony Arcieri
d031744073 Merge pull request #178 from vks/backticks 
Use backticks for escaped characters
 2019-10-07 08:27:20 -07:00
Vinzent Steinberg
2dda7f38b8 Use backticks for escaped characters 2019-10-07 17:05:39 +02:00
Tony Arcieri
5e28b2dfe5 Merge pull request #177 from vks/fix-escapes 
Fix escapes in hyper advisory
 2019-10-07 06:42:01 -07:00
Vinzent Steinberg
5233609919 Fix escapes in hyper advisory 
Fixes #159.
 2019-10-07 15:30:55 +02:00
Tony Arcieri
b6a88434ed Merge pull request #176 from vks/patch-1 
Fix typo
 2019-10-07 06:17:41 -07:00
Vinzent Steinberg
64cec608d3 Fix typo 2019-10-07 15:08:59 +02:00
Tony Arcieri
7d15b28550 Merge pull request #175 from RustSec/CVE-2018-1000810/typo 
CVE-2018-1000810: fix typo
 2019-10-02 12:45:23 -07:00
Tony Arcieri
e82ba1fe35 CVE-2018-1000810: fix typo 2019-10-02 12:19:53 -07:00
Tony Arcieri
2659dc69f7 Merge pull request #174 from RustSec/CVE-2019-16760/fixups 
CVE-2019-16760: update advisory title
 2019-10-02 12:15:04 -07:00
Tony Arcieri
daf03936dd CVE-2019-16760: update advisory title 
Matches the advisory title used for:

https://github.com/rust-lang/rust/security/advisories/GHSA-phjm-8x66-qw4r

Also adds `GHSA-phjm-8x66-qw4r` as an alias
 2019-10-02 12:10:00 -07:00
Tony Arcieri
a4f1c446c9 Merge pull request #172 from RustSec/RUSTSEC-2017-0006 
Assign RUSTSEC-2017-0006 to rmpv
 2019-10-01 08:22:54 -07:00
Tony Arcieri
ca7b554f5b Assign RUSTSEC-2017-0006 to rmpv 
Original PR: https://github.com/RustSec/advisory-db/pull/171
 2019-10-01 08:11:47 -07:00
Tony Arcieri
7da816e509 Merge pull request #171 from dbrgn/rmpv 
Add advisory for DoS vulnerability in rmpv
 2019-10-01 08:06:54 -07:00
Danilo Bargen
57a8cb1eae Add advisory for DoS vulnerability in rmpv 2019-10-01 10:15:06 +02:00
Tony Arcieri
a3b79c053f Merge pull request #170 from RustSec/CVE-2019-16760 
Add CVE-2019-16760: Security advisory for Cargo (2019-09-30)
 2019-09-30 10:10:52 -07:00
Tony Arcieri
a90bcef811 .travis.yml: Don't install rustsec-admin if it's already installed 2019-09-30 09:36:56 -07:00
Tony Arcieri
84423b8605 Add CVE-2019-16760: Security advisory for Cargo (2019-09-30) 
Original announcement: https://groups.google.com/forum/#!topic/rustlang-security-announcements/rVQ5e3TDnpQ
 2019-09-30 09:24:50 -07:00
Tony Arcieri
5beb8d4305 Merge pull request #169 from RustSec/rustsec-admin 
.travis.yml: Lint with the `rustsec-admin` crate
 2019-09-24 02:52:00 -07:00
Tony Arcieri
f40c350e71 .travis.yml: Lint with the rustsec-admin crate 
https://github.com/RustSec/rustsec-admin
 2019-09-24 02:32:18 -07:00
Tony Arcieri
cd175d416a Merge pull request #167 from RustSec/move-linter-out-of-repo 
Move linter to the `RustSec/rustsec-crate` repo
 2019-09-23 14:54:50 -07:00
Tony Arcieri
a86a4d5783 Move linter to the RustSec/rustsec-crate repo 
The linter has been extracted from this repo into a combined CLI utility
which is available here:

https://github.com/RustSec/rustsec-crate/tree/master/cli
 2019-09-23 14:35:14 -07:00
Tony Arcieri
206598bb68 Merge pull request #166 from RustSec/rustsec/v0.13 
Upgrade to `rustsec` v0.13 final release
 2019-09-23 08:39:21 -07:00
Tony Arcieri
e3c507bdf3 Upgrade to rustsec v0.13 final release 2019-09-23 08:31:33 -07:00
Tony Arcieri
62cf33df70 Merge pull request #165 from RustSec/rustsec/v0.13.0-alpha4 
Upgrade to `rustsec` v0.13.0-alpha4
 2019-09-22 17:14:06 -07:00
Tony Arcieri
3595024657 Upgrade to rustsec v0.13.0-alpha4 2019-09-22 16:56:16 -07:00
Tony Arcieri
5b69b1de70 Merge pull request #164 from RustSec/RUSTSEC-2019-0022/fix-date 
RUSTSEC-2019-0022: Fix date
 2019-09-18 11:56:32 -06:00
Tony Arcieri
41487158f9 RUSTSEC-2019-0022: Fix date 
Filed as 2017 instead of 2019
 2019-09-18 11:49:43 -06:00
Tony Arcieri
7df1c4c131 Merge pull request #163 from RustSec/RUSTSEC-2019-0023 
Assign RUSTSEC-2019-0023 to string-interner
 2019-09-18 11:38:21 -06:00
Tony Arcieri
869f318f78 Assign RUSTSEC-2019-0023 to string-interner 
Original PR: https://github.com/RustSec/advisory-db/pull/138
 2019-09-18 11:30:26 -06:00
Tony Arcieri
d6a1741bf2 Merge pull request #162 from RustSec/RUSTSEC-2019-0022 
Assign RUSTSEC-2019-0022 to portaudio-rs
 2019-09-18 11:27:36 -06:00
Tony Arcieri
52ceea1bb8 Assign RUSTSEC-2019-0022 to portaudio-rs 
Original PR: https://github.com/RustSec/advisory-db/pull/160
 2019-09-18 11:04:14 -06:00
Tony Arcieri
80feab701f Merge pull request #161 from RustSec/RUSTSEC-2019-0021 
Assign RUSTSEC-2019-0021 to linea
 2019-09-18 11:02:19 -06:00
Tony Arcieri
e9e31b78b2 Assign RUSTSEC-2019-0021 to linea 
Original PR: https://github.com/RustSec/advisory-db/pull/160
 2019-09-18 10:55:28 -06:00
Tony Arcieri
9d76d6e24d Merge pull request #138 from lo48576/string-interner-0.7.0 
Add advisory for string-interner
 2019-09-18 10:43:17 -06:00
YOSHIOKA Takuma
dd2ca60acb Add advisory for string-interner 2019-09-18 15:21:34 +09:00
Tony Arcieri
947b9bfe8a Merge pull request #160 from Phosphorus15/master 
Use-after-free in portaudio-rs and double free in linea
 2019-09-17 13:27:27 -06:00
phosphorus
473e6a8f5a Update RUSTSEC-0000-0000.toml 2019-09-16 00:27:38 +08:00
phosphorus
c081847f6d Update RUSTSEC-0000-0000.toml 2019-09-16 00:27:24 +08:00
phosphorus
13ea84ced3 add double free within linea 2019-09-16 00:22:41 +08:00
phosphorus
67b08c24a4 added UAF within portaudio-rs 2019-09-16 00:12:52 +08:00
Tony Arcieri
340b740569 Merge pull request #157 from RustSec/linter 
Upgrade to `rustsec` crate v0.13.0-alpha1; add linter
 2019-09-09 12:56:38 -07:00
Tony Arcieri
9b0038eb76 README.md: Update advisory template with [affected] section 
Documents the new `[affected]` section of an advisory, as supported by
the `rustsec` crate v0.13.0.
 2019-09-09 12:40:24 -07:00
Tony Arcieri
01ac6725d5 Fix all advisories to pass linter 
Mostly related to the `affected_functions` field, which has changed a
few times.
 2019-09-09 12:19:01 -07:00
Tony Arcieri
74ebe212dc Upgrade to rustsec crate v0.13.0-alpha1; add linter 
Upgrades the `rustsec` crate to the latest alpha release and uses the
new `rustsec::advisory::Linter` functionality to lint advisories
currently in the database.

Several of them are using invalid keys and need to be updated.
 2019-09-09 11:39:11 -07:00
Tony Arcieri
a1cd9fc432 Merge pull request #156 from RustSec/RUSTSEC-2019-0020 
Assign RUSTSEC-2019-0020 to generator
 2019-09-07 08:16:17 -07:00
Tony Arcieri
df689834c7 Assign RUSTSEC-2019-0020 to generator 
Original PR: https://github.com/RustSec/advisory-db/pull/150
 2019-09-07 08:08:16 -07:00
Xudong Huang
3461fe2601 Add advisory for generator (#150) 2019-09-07 07:42:52 -07:00
Tony Arcieri
43aea6cc49 Merge pull request #153 from RustSec/RUSTSEC-2019-0019 
Assign RUSTSEC-2019-0019 to blake2
 2019-09-06 16:52:52 -07:00