advisory-db

OMGeeky/advisory-db

Fork 0

mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-18 01:18:09 +01:00

71f18afd3b Assigned RUSTSEC-2020-0156 to libsecp256k1-rs (#1030) github-actions[bot] 2021-09-09 17:53:06 -04:00
e5b66bfe9e Add rustsec advisory for GHSA-7cqg-8449-rmfv (#1022) Jon Moroney 2021-09-09 14:51:48 -07:00
4b4a4d8d88 Assigned RUSTSEC-2021-0104 to pleaser (#1029) github-actions[bot] 2021-09-09 17:51:08 -04:00
951070000d Add rustsec advisory for GHSA-f3fg-5j9p-vchc (#1020) Jon Moroney 2021-09-09 14:49:39 -07:00
8e5d566ef0 Assigned RUSTSEC-2021-0103 to molecule (#1028) github-actions[bot] 2021-09-09 17:49:20 -04:00
9a81b244aa Add rustsec advisory for GHSA-82hm-vh7g-hrh9 (#1021) Jon Moroney 2021-09-09 14:48:07 -07:00
9dbe26271a Assigned RUSTSEC-2021-0102 to pleaser (#1027) github-actions[bot] 2021-09-09 17:47:42 -04:00
841ecbf1b2 Add rustsec advisory for GHSA-pp74-39w2-v4w9 (#1016) Jon Moroney 2021-09-09 14:45:16 -07:00
b59e06ec22 Assigned RUSTSEC-2021-0101 to pleaser (#1026) github-actions[bot] 2021-09-09 17:38:52 -04:00
27820b701d Add rustsec advisory for GHSA-vc5p-j8vw-mc6x (#1014) Jon Moroney 2021-09-09 14:36:33 -07:00
3e31699c08 Assigned RUSTSEC-2021-0100 to sha2 (#1013) github-actions[bot] 2021-09-09 10:22:48 -06:00
4744ee629e Add sha2 v0.9.7 AVX2 bug (#1012) Tony Arcieri 2021-09-09 10:14:52 -06:00
138fb15795 Assigned RUSTSEC-2021-0099 to cosmos_sdk (#1011) github-actions[bot] 2021-08-25 08:54:10 -06:00
0f2bc2d6ee Add unmaintained crate advisory for cosmos_sdk (#1010) Tony Arcieri 2021-08-25 08:47:17 -06:00
1be9534293 Assigned RUSTSEC-2021-0098 to openssl-src (#1009) github-actions[bot] 2021-08-24 17:53:35 +02:00
10b6f1e350 add cve-2021-3712 for openssl-src (#1007) Alexis Mousset 2021-08-24 17:52:03 +02:00
ceea398762 Assigned RUSTSEC-2021-0097 to openssl-src (#1008) github-actions[bot] 2021-08-24 09:37:57 -06:00
100b12d997 add cve-2021-3711 for openssl-src (#1006) Alexis Mousset 2021-08-24 17:36:20 +02:00
9f1d4c902c Assigned RUSTSEC-2021-0096 to spirv_headers (#1005) github-actions[bot] 2021-08-23 08:34:15 -06:00
2f117ce3f1 spirv_headers is deprecated (#982) Jasper Bekkers 2021-08-23 16:17:39 +02:00
d711272311 ash: RUSTSEC-2021-0090 has been patched in 0.33.1 (#1004) Marijn Suijten 2021-08-23 14:04:28 +02:00
45f9665f13 Fix CVE alias CVE-2020-35920 (#1003) Sergey "Shnatsel" Davidoff 2021-08-23 13:51:39 +03:00
101d914e04 RUSTSEC-2021-0089 has been patched in raw-cpuid 9.1.1 (#1002) Niklas Fiekas 2021-08-22 11:43:52 +02:00
b6a20c1ba3 Assigned RUSTSEC-2021-0095 to mopa (#1001) github-actions[bot] 2021-08-21 19:48:14 -06:00
59cdbf2173 mopa is technically unsound (#927) kotauskas 2021-08-22 04:46:55 +03:00
4b01805939 Assigned RUSTSEC-2021-0094 to rdiff (#1000) github-actions[bot] 2021-08-21 19:46:40 -06:00
89842247a4 Add advisory for out-of-bounds read in rdiff (#862) Ammar Askar 2021-08-21 21:44:58 -04:00
14af874fad Assigned RUSTSEC-2021-0093 to crossbeam-deque (#999) github-actions[bot] 2021-08-21 19:44:22 -06:00
670b28875f Add advisory for data race in crossbeam-deque (#970) Taiki Endo 2021-08-22 10:43:00 +09:00
8d3e99a38a Assigned RUSTSEC-2021-0092 to messagepack-rs (#998) github-actions[bot] 2021-08-21 19:41:04 -06:00
460ac8be0d Add advisory for uninitialized exposure in messagepack-rs (#835) Ammar Askar 2021-08-21 21:39:40 -04:00
cf6f9d252e Assigned RUSTSEC-2021-0091 to gfx-auxil (#997) github-actions[bot] 2021-08-21 19:39:27 -06:00
22325889a4 gfx-auxil: Read on uninitialized buffer may cause UB ( gfx_auxil::read_spirv() ) (#681) Youngsuk Kim 2021-08-21 21:38:06 -04:00
2645debec2 Assigned RUSTSEC-2021-0090 to ash (#996) github-actions[bot] 2021-08-21 19:37:52 -06:00
690cf95635 ash: Reading on uninitialized memory may cause UB ( util::read_spv() ) (#680) Youngsuk Kim 2021-08-21 21:36:30 -04:00
7bf5619877 Assigned RUSTSEC-2021-0089 to raw-cpuid (#995) github-actions[bot] 2021-08-21 19:36:17 -06:00
7d12d9524b raw-cpuid: Optional Deserialize implementations lacking validation (#671) Niklas Fiekas 2021-08-22 03:34:59 +02:00
e6e533abfa Assigned RUSTSEC-2021-0088 to csv-sniffer (#994) github-actions[bot] 2021-08-21 19:34:42 -06:00
2e4cdf36d0 csv-sniffer: reading on uninitialized memory may cause undefined behavior (#666) Youngsuk Kim 2021-08-21 21:33:07 -04:00
ec590b08b7 Assigned RUSTSEC-2020-0155 to acc_reader (#993) github-actions[bot] 2021-08-21 19:32:53 -06:00
25838dcf1d acc_reader: API Soundness issue in fill_buf() and read_up_to() (#664) Youngsuk Kim 2021-08-21 21:30:45 -04:00
03144b1978 Assigned RUSTSEC-2020-0154 to buffoon (#992) github-actions[bot] 2021-08-21 19:30:23 -06:00
09e0afc373 buffoon: InputStream::read_exact : Reading into an uninitialized buffer may cause UB (#663) Youngsuk Kim 2021-08-21 21:28:07 -04:00
06d14ff7f7 Assigned RUSTSEC-2021-0087 to columnar (#991) github-actions[bot] 2021-08-21 19:27:48 -06:00
72e61b6d12 columnar: Reading on uninitialized buffer may cause UB (#662) Youngsuk Kim 2021-08-21 21:25:59 -04:00
4a51eedb08 Assigned RUSTSEC-2021-0086 to flumedb (#990) github-actions[bot] 2021-08-21 19:25:44 -06:00
c487b0ceea flumedb: Reading on uninitialized buffer may cause UB ( read_entry() ) (#661) Youngsuk Kim 2021-08-21 21:23:49 -04:00
383c6359f5 Assigned RUSTSEC-2021-0085 to binjs_io (#989) github-actions[bot] 2021-08-21 19:23:35 -06:00
9e4db05abc binjs_io: 'Read' on uninitialized memory may cause UB (#660) Youngsuk Kim 2021-08-21 21:20:15 -04:00
9039912764 Assigned RUSTSEC-2021-0084 to bronzedb-protocol (#988) github-actions[bot] 2021-08-21 19:20:01 -06:00
10843f8372 bronzedb-protocol: Read on uninitialized buffer can cause UB (impl of ReadKVExt) (#659) Youngsuk Kim 2021-08-21 21:18:33 -04:00
e9382c8680 Fix typos in advisories (#976) Alexis Mousset 2021-08-22 03:18:11 +02:00
7765af95c4 Assigned RUSTSEC-2021-0083 to derive-com-impl (#987) github-actions[bot] 2021-08-21 19:17:47 -06:00
ef71611e6a Add advisory for potential memory corruption in derive-com-impl (#649) apennamen 2021-08-22 03:16:19 +02:00
9c5df457e5 Assigned RUSTSEC-2020-0153 to bite (#986) github-actions[bot] 2021-08-21 19:15:34 -06:00
b4b68c19bc bite: Read on uninitialized memory (#593) Youngsuk Kim 2021-08-21 21:08:46 -04:00
68d6f5afa9 Assigned RUSTSEC-2021-0082 to vec-const (#985) github-actions[bot] 2021-08-21 19:08:23 -06:00
01c59cafdb Report vec-const as unsound (#981) Ben Kimock 2021-08-21 21:07:03 -04:00
f20b53ca89 Patched release of reffers (#984) diwic 2021-08-21 11:38:49 +02:00
e0fda3fe9b add CVE alias to RUSTSEC-2021-0081(actix-http) (#983) Sergey "Shnatsel" Davidoff 2021-08-17 22:07:01 +03:00
67da87fc89 Update RUSTSEC-2021-0080 [affected] version (#980) kpcyrd 2021-08-10 21:54:42 +00:00
01bad82da9 Add fix for RUSTSEC-2021-0080 (#979) Remi Rampin 2021-08-10 09:52:04 -07:00
e692597283 Assigned RUSTSEC-2021-0081 to actix-http (#978) github-actions[bot] 2021-08-10 12:12:52 +03:00
7a42cb7e08 add advisory for actix-http HRS (#977) Rob Ede 2021-08-10 10:11:38 +01:00
541c537a23 added specific affected functions to CVE-2021-29922 (#975) ZSchoen 2021-08-09 14:15:56 +02:00
ce76490feb Assigned RUSTSEC-2021-0080 to tar (#974) github-actions[bot] 2021-08-08 13:16:32 -07:00
158cd653ca Add directory traversal for tar (#965) kpcyrd 2021-08-08 19:53:24 +00:00
82ce1aa716 Assigned RUSTSEC-2021-0079 to hyper (#973) github-actions[bot] 2021-08-08 12:41:08 -07:00
3a5de9c7b5 Add advisory for hyper Transfer-Encoding header parsing (#968) BlackHoleFox 2021-08-08 14:39:37 -05:00
255194ae7a Assigned RUSTSEC-2021-0078 to hyper (#972) github-actions[bot] 2021-08-08 12:39:12 -07:00
0148dead3a Add advisory for hyper Content-Length header parsing (#967) BlackHoleFox 2021-08-08 14:36:02 -05:00
a81783c627 added CVE-2021-29922 (#971) ZSchoen 2021-08-08 21:35:13 +02:00
1db7602857 Assigned RUSTSEC-2021-0077 to better-macro (#969) github-actions[bot] 2021-07-26 13:46:07 -07:00
8af7718d8f better-macro has deliberate RCE in proc-macro (#966) Jeremy Fitzhardinge 2021-07-26 13:39:47 -07:00
e20838a4ff Assigned RUSTSEC-2021-0076 to libsecp256k1 (#964) github-actions[bot] 2021-07-13 15:47:59 +03:00
e95d360049 Add advisory for libsecp256k1 (#963) Martin Pugh 2021-07-13 14:46:23 +02:00
4792a373b1 Assigned RUSTSEC-2021-0075 to ark-r1cs-std (#962) github-actions[bot] 2021-07-09 06:07:19 +02:00
674daf6fae ark_r1cs_std::mul_by_inverse generated unsound constraints in versions below 0.3.1 (#961) Pratyush Mishra 2021-07-08 21:06:05 -07:00
730c1e815a Revert "Hotfix #957 until we figure out what to do with it (#958)" (#960) Sergey "Shnatsel" Davidoff 2021-07-08 22:09:27 +03:00
2d60adf54f Assigned RUSTSEC-2021-0074 to ammonia (#959) github-actions[bot] 2021-07-08 20:48:05 +02:00
3533e434a6 Add rust-ammonia/ammonia#142 (#956) Michael Howell 2021-07-08 11:46:50 -07:00
a9c31a6e25 Hotfix #957 until we figure out what to do with it (#958) Sergey "Shnatsel" Davidoff 2021-07-08 21:34:15 +03:00
7629432184 Assigned RUSTSEC-2021-0073 to prost-types (#955) github-actions[bot] 2021-07-08 19:27:50 +02:00
1889bffd67 prost-types: Timestamp conversion overflow (#954) Lucio Franco 2021-07-08 13:25:47 -04:00
cbeaf18e2b Made RUSTSEC-2021-0072 not affect tokio 2.0 and later Sergey "Shnatsel" Davidoff 2021-07-08 01:26:08 +02:00
01ac699fd5 Assigned RUSTSEC-2021-0072 to tokio (#952) github-actions[bot] 2021-07-08 01:09:42 +02:00
6f2157cba4 Add advisory for race condition in Tokio (#951) Alice Ryhl 2021-07-08 01:08:31 +02:00
afbc0dc9e1 Update five std CVEs (#946) Yechan Bae 2021-07-06 14:36:13 -04:00
23d8630fbe Bump rustsec-admin to v0.5.1 (#949) Tony Arcieri 2021-07-03 13:02:47 -06:00
34e9832a80 OSV export: fix handling of advisories without an ID (#948) Sergey "Shnatsel" Davidoff 2021-07-02 17:48:46 +02:00
9f3eb562a2 Add OSV export CI job (#947) Sergey "Shnatsel" Davidoff 2021-07-02 17:22:13 +02:00
d5a60f2737 Fix RUSTSEC-2021-0048 which doesn't declare an operand (#945) Sergey "Shnatsel" Davidoff 2021-07-02 01:39:03 +02:00
84e3fb3121 Add withdrawn field (#942) Sergey "Shnatsel" Davidoff 2021-06-30 00:08:30 +02:00
1684325bb6 Bump rustsec-admin to v0.5.0 (#944) Tony Arcieri 2021-06-29 15:01:00 -07:00
220bc71988 Add patched version for flatbuffers RUSTSEC-2020-0009 (#943) Chojan Shang 2021-06-24 05:24:04 +08:00
cd87335b46 Update RUSTSEC-2021-0049.md (#941) David Marshall 2021-06-16 14:05:39 -07:00
0d2022a191 Assigned RUSTSEC-2021-0071 to grep-cli (#940) github-actions[bot] 2021-06-15 00:43:22 +02:00
ec6dbf077c crates/grep-cli: add advisory for arbitrary binary execution on Windows (#939) Andrew Gallant 2021-06-14 18:42:25 -04:00
86ed56812a Add GHSA mentions to aliases field. This is becoming more important with OSV enabling interop between databases (#937) Sergey "Shnatsel" Davidoff 2021-06-09 03:07:22 +02:00
958120be0a Update RUSTSEC-2020-0043.md (#934) Brad Gibson 2021-06-07 14:06:52 -07:00

Commit Graph Select branches Hide Pull Requests main Mono Color

Commit Graph

Select branches

Hide Pull Requests

main