OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2025-12-29 07:46:22 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,875 Commits 1 Branch 0 Tags
e9f2cb51e9cbffcde682dadc8c90fa3e16e6879d
Commit Graph

1875 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
github-actions[bot]
e9f2cb51e9 Assigned RUSTSEC-2022-0087 to slack-morphism (#1563) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-02 22:45:24 +11:00
pinkforest(she/her)
8a527f394d Add slack-morphism CVE-2022-39292 (#1557) 2023-02-02 22:44:52 +11:00
github-actions[bot]
e572c789de Assigned RUSTSEC-2022-0086 to slack-morphism (#1562) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-02 22:43:48 +11:00
pinkforest(she/her)
f134e7d43f Add slack-morphism CVE-2022-31162 (#1556) 2023-02-02 22:43:19 +11:00
github-actions[bot]
6d67664d5c Assigned RUSTSEC-2022-0085 to matrix-sdk-crypto (#1561) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-02 22:35:31 +11:00
pinkforest(she/her)
faeab0e649 Add matrix-sdk-crypto (#1550) 
* Add matrix-sdk-crypto

* Oops filename

* Fix URL
 2023-02-02 22:32:39 +11:00
github-actions[bot]
9649b3d615 Assigned RUSTSEC-2022-0084 to libp2p (#1560) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-02 22:22:51 +11:00
pinkforest(she/her)
52ce3729d8 Add libp2p DoS (#1555) 2023-02-02 22:22:26 +11:00
github-actions[bot]
afb1c10d60 Assigned RUSTSEC-2022-0083 to evm (#1559) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-02 22:20:42 +11:00
pinkforest(she/her)
f559ed42f5 Add evm (#1551) 
* Add evm

* Remove extra whitespace
 2023-02-02 22:19:50 +11:00
github-actions[bot]
537d071b21 Assigned RUSTSEC-2020-0166 to personnummer (#1558) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-02 21:57:52 +11:00
pinkforest(she/her)
5f0a8eb719 Add personnummer (#1549) 
* Add personnummer

* Add GHSA alias
 2023-02-02 21:57:12 +11:00
github-actions[bot]
21c63df119 Assigned RUSTSEC-2021-0147 to daemonize (#1548) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-02-01 19:58:41 +11:00
sidunder
21075927b8 Add unmaintained daemonize (#1547) 
* Add advisory daemonize

* Clarify unsafe and last release

* Remove old daemonize alternatives

---------

Co-authored-by: Sidney Rubidge <sidneyrubidge@gmail.com>
Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-02-01 19:58:10 +11:00
github-actions[bot]
bc462d09cd Assigned RUSTSEC-2022-0082 to warp (#1545) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-01-29 10:46:17 +11:00
Nathaniel Daniel
b2314e4e65 Add advisory for warp#937 (#1544) 
* Add advisory for warp#937

* Change date to time of initial report
 2023-01-29 10:45:42 +11:00
Titus
bed742d611 Remove unmaintained status of markdown (#1542) 
* Remove unmaintained status of `markdown`

* Minor fixes

* Using withdrawn field instead

* Use patched instead

* Fix typo

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-01-22 03:20:54 +11:00
github-actions[bot]
ac877f8184 Assigned RUSTSEC-2023-0003 to libgit2-sys (#1541) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-01-21 10:06:55 +11:00
Pietro Albini
9c5f2ab9de Add advisory for libgit2-sys (#1540) 
* add advisory for libgit2-sys

* Add header

Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2023-01-21 00:06:24 +01:00
github-actions[bot]
0db6a677c5 Assigned RUSTSEC-2022-0081 to json (#1537) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-01-19 22:05:23 +11:00
Jonathan Johnson
1e334299d2 Report json as unmaintained (#1536) 
* Report json as unmaintained

* Minor date alignment

* Adjust crates links

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-01-19 22:03:55 +11:00
J3rry
45a4e9ee37 Mark v9 patched (#1533) 
* Patch has been made

Refer : 18847c50e5

* Cosmetic fix

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-01-18 22:04:14 +11:00
Jonathan Schwender
432ee92275 Add patched info for RUSTSEC-2022-0079 (elf_rs) (#1534) 
The issue was confirmed to be fixed in v0.3.0 by the person who reported the issue:
https://github.com/vincenthouyi/elf_rs/issues/11#issuecomment-1384624749
 2023-01-18 21:44:23 +11:00
github-actions[bot]
3c72c41322 Assigned RUSTSEC-2022-0080 to parity-util-mem (#1530) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-01-16 20:26:23 +11:00
pinkforest(she/her)
1942335c87 Add parity-util-mem unmaintained (#1528) 2023-01-16 20:24:43 +11:00
github-actions[bot]
bdcf1d329d Assigned RUSTSEC-2021-0146 to twoway (#1529) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-01-15 20:38:43 +11:00
Michał Fita
e1daf6daf9 Add unmaintained twoway (#1435) 
* Deprecation of `twoway` crate

* Address review comments

* Fix lint

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-01-15 20:37:34 +11:00
github-actions[bot]
c5a6230304 Assigned RUSTSEC-2022-0079 to elf_rs (#1527) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-01-15 19:32:04 +11:00
atulkharerivos
c9f4b7f987 Add advisory for elf_rs crate (#1450) 
* Add advisory for elf_rs crate

This adds an advisory for the elf_rs crate.

* Update crates/elf_rs/RUSTSEC-0000-0000.md

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>
 2023-01-15 19:31:21 +11:00
Meet
39cefc91b1 Update RUSTSEC-2021-0088.md (#1512) 
* Update RUSTSEC-2021-0088.md

Patch has been made refer : https://github.com/jblondin/csv-sniffer/pull/2/

* Update crates/csv-sniffer/RUSTSEC-2021-0088.md

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>

* Update crates/csv-sniffer/RUSTSEC-2021-0088.md

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>
 2023-01-15 19:14:23 +11:00
github-actions[bot]
e653dbe4cb Assigned RUSTSEC-2022-0078 to bumpalo (#1526) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2023-01-14 15:39:48 -05:00
David Cook
d69627fe05 Add advisory for bumpalo Vec iterator unsoundness (#1525) 2023-01-14 15:39:14 -05:00
github-actions[bot]
3b705ed68b Assigned RUSTSEC-2022-0077 to claim (#1523) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2023-01-14 12:10:40 +11:00
Anders Evensen
33b2dd9f49 Report claim as unmaintained. (#1521) 
* Report claim as unmaintained.

* Fix template

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-01-14 12:09:05 +11:00
Luke Parker
7022e53486 Update RUSTSEC-2022-0075.md (#1522) 
* Update RUSTSEC-2022-0075.md

https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-wh6w-3828-g9qf specifies 1.0.2 as patched.

* Correct 1.0 range

* Adjust SemVer lottery

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2023-01-14 11:56:30 +11:00
Meet
23e305a6bd Update RUSTSEC-2021-0086.md (#1513) 
* Update RUSTSEC-2021-0086.md

The issue is fixed refer : https://github.com/sunrise-choir/flumedb-rs/pull/12

* Update crates/flumedb/RUSTSEC-2021-0086.md

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>

* Update crates/flumedb/RUSTSEC-2021-0086.md

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>

Co-authored-by: pinkforest(she/her) <36498018+pinkforest@users.noreply.github.com>
 2023-01-14 11:30:14 +11:00
Sergey "Shnatsel" Davidoff
25424addbf Yank git2 advisory; reportedly not an issue, pending further investigation (#1520) 
* Yank git2 advisory; reportedly not an issue, pending further investigation

* fix
 2023-01-13 00:13:43 +01:00
github-actions[bot]
96c5b9c888 Assigned RUSTSEC-2023-0002 to git2 (#1519) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-01-12 22:50:29 +01:00
Ian Jackson
6196462c99 Make a RUSTSEC advisory for CVE-2022-46176 (git2-rs, cargo) (#1518) 
* Make a RUSTSEC advisory for CVE-2022-46176 (git2-rs, cargo)

* Fix crate-name

* In fact you can get the cert but only its hash, etc.

* drop empty and commented fields, set crypto-failure category

Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
 2023-01-12 22:49:50 +01:00
github-actions[bot]
0f3a69cc60 Assigned RUSTSEC-2022-0076 to wasmtime (#1517) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-01-12 14:14:43 +01:00
pinkforest(she/her)
0d7190c22f Add CVE-2022-39392 (#1508) 2023-01-12 14:14:04 +01:00
github-actions[bot]
ca75eecb36 Assigned RUSTSEC-2022-0075 to wasmtime (#1516) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-01-12 14:13:49 +01:00
pinkforest(she/her)
f1e7c48600 Add wasmtime CVE-2022-39393 (#1509) 2023-01-12 14:12:31 +01:00
Alexis Mousset
4b4ba5b43b Update to rustsec-admin 0.8.5 (#1515) 2023-01-11 21:14:31 +01:00
pinkforest(she/her)
9e3a6922d5 Add License CC-BY 4.0 Import exemption (#1507) 2023-01-09 09:57:05 -07:00
github-actions[bot]
e1e7758c17 Assigned RUSTSEC-2023-0001 to tokio (#1511) 
Co-authored-by: Shnatsel <Shnatsel@users.noreply.github.com>
 2023-01-09 15:15:04 +01:00
pinkforest(she/her)
7b0c697520 Add tokio CVE-2023-22466 (#1510) 
* Add tokio CVE-2023-22466

* Syntax

* Syntax

* Syntax
 2023-01-09 15:08:18 +01:00
github-actions[bot]
6d5b76eb3b Assigned RUSTSEC-2022-0074 to prettytable-rs (#1505) 
Co-authored-by: pinkforest <pinkforest@users.noreply.github.com>
 2022-12-27 21:48:04 +11:00
davidyo
9db09cf3a8 Add unsound prettytable-rs (#1503) 
* Add unsound infoirmation to prettytable-rs

* Minor fix

Co-authored-by: pinkforest <36498018+pinkforest@users.noreply.github.com>
 2022-12-27 21:47:27 +11:00
github-actions[bot]
487a60b7a5 Assigned RUSTSEC-2022-0073 to alloc-cortex-m (#1502) 
Co-authored-by: alex <alex@users.noreply.github.com>
 2022-12-23 11:46:57 -05:00