OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-03 18:15:23 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
200651cff219e93888d30576dd1e6911d8a802e4
advisory-db/crates
History
Roy Wellington Ⅳ 200651cff2 Correct affected version range on RUSTSEC-2019-003[34] to patched at 0.1.20 
I believe these two vulnerabilities were patched at 0.1.20.

For RUSTSEC-2019-0033:

The advisory links to the bug: https://github.com/hyperium/http/issues/352
In that bug, the fixing PR was https://github.com/hyperium/http/pull/360
That PR merged the commit 81ceb61 to fix the bug; that commit, according to
GitHub, was first picked up by tag v0.1.20 ([commit][1]).

[1]: 81ceb611cf

For RUSTSEC-2019-0034:

This advisory is two separate GitHub issues against `HeaderMap::drain`,
http #354 and http #355.

For the first: the issue: https://github.com/hyperium/http/issues/354
In that bug, the fixing PR was https://github.com/hyperium/http/pull/357
That PR merged the commit 82d53db to fix the bug; that commit, according to
GitHub, was first picked up by tag v0.1.20 ([commit][2]).

[2]: 82d53dbdfd

For the second: the issue: https://github.com/hyperium/http/issues/355
In that bug, the fixing PR was https://github.com/hyperium/http/pull/362
That PR merged the commit 8ffe094 to fix the bug; that commit, according to
GitHub, was first picked up by tag v0.1.20 ([commit][3]).

[3]: 8ffe094df1
2020-01-09 12:20:27 -05:00
..
ammonia
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
arrayfire
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
asn1_der
Assign RUSTSEC-2019-0007 to asn1_der
2019-06-24 09:48:05 -07:00
base64
Revert "Add affected functions to legacy security warnings (#83)"
2019-01-13 17:31:25 -08:00
blake2
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
cassandra
Assign RUSTSEC-2016-0006 (informational) to cassandra
2019-10-08 11:13:07 -07:00
chacha20
Assign RUSTSEC-2019-0029 to chacha20
2019-10-23 10:56:18 -07:00
chan
Add patched_versions to informational advisories
2019-10-08 07:34:43 -07:00
chttp
Assign RUSTSEC-2019-0016 to chttp
2019-09-01 13:06:15 -07:00
claxon
Assign RUSTSEC-2018-0004 to claxon
2018-08-25 07:11:55 -07:00
compact_arena
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
cookie
Keywords
2018-07-24 16:02:35 -07:00
crossbeam
Assign RUSTSEC-2018-0009 to crossbeam
2018-12-09 09:42:17 -08:00
crust
Assign RUSTSEC-2019-0032 to crust
2019-12-17 07:32:36 -08:00
flatbuffers
Assign RUSTSEC-2019-0028 to flatbuffers
2019-10-23 09:11:16 -07:00
generator
Assign RUSTSEC-2019-0020 to generator
2019-09-07 08:08:16 -07:00
http
Correct affected version range on RUSTSEC-2019-003[34] to patched at 0.1.20
2020-01-09 12:20:27 -05:00
hyper
Use backticks for escaped characters
2019-10-07 17:05:39 +02:00
image
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
libflate
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
libp2p-core
[libp2p-core] fix patched versions
2019-05-20 11:38:22 +02:00
libsecp256k1
Assign RUSTSEC-2019-0027 to libsecp256k1
2019-10-14 08:47:43 -07:00
libusb
Add patched_versions to informational advisories
2019-10-08 07:34:43 -07:00
linea
Assign RUSTSEC-2019-0021 to linea
2019-09-18 10:55:28 -06:00
memoffset
typo
2019-07-20 13:45:36 +02:00
ncurses
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
once_cell
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
openssl
Assign RUSTSEC-2018-0010 to openssl
2018-12-16 10:08:17 -08:00
orion
Assign RUSTSEC-2018-0012 to orion
2019-02-13 16:31:27 -08:00
pancurses
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
portaudio
Assign RUSTSEC-2016-0003 to portaudio
2019-06-06 17:34:55 -07:00
portaudio-rs
RUSTSEC-2019-0022: Fix date
2019-09-18 11:49:43 -06:00
protobuf
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
renderdoc
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
rmpv
RUSTSEC-2017-0006: rmpv: add patched versions
2019-10-11 09:07:24 -07:00
rust-crypto
No IETF on XChaCha20 variant
2019-11-04 19:53:43 +01:00
rustsec-example-crate
RUSTSEC-2019-0024: Test advisory for rustsec-example-crate
2019-10-08 18:11:30 -07:00
safe-transmute
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
security-framework
Keywords
2018-07-24 16:02:35 -07:00
serde_cbor
Assign RUSTSEC-2019-0025 to serde_cbor
2019-10-11 08:40:48 -07:00
serde_yaml
Assign RUSTSEC-2018-0005 to serde_yaml
2018-10-13 16:24:33 -07:00
simd-json
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
slice-deque
Assign RUSTSEC-2019-0002 to slice-deque
2019-05-07 12:13:52 -07:00
smallvec
Fix all advisories to pass linter
2019-09-09 12:19:01 -07:00
sodiumoxide
Update RUSTSEC-2019-0026.toml
2019-10-20 02:04:21 +03:00
spin
RUSTSEC-2019-0031: add conquer-once as an alternative to spin
2020-01-03 13:32:51 -05:00
streebog
Assign RUSTSEC-2019-0030 to streebog
2019-11-07 08:16:46 -08:00
string-interner
string-interner-0.6.4 also fixes RUSTSEC-2019-0023
2019-12-21 11:43:05 +01:00
tar
Revert "Add affected functions to legacy security warnings (#83)"
2019-01-13 17:31:25 -08:00
term
Assign RUSTSEC-2018-0015 (informational) to term
2019-10-08 10:28:47 -07:00
trust-dns-proto
Fix "date:" field on RUSTSEC-2018-0007
2018-10-14 09:53:19 -07:00
trust-dns-server
Assign RUSTSEC-2020-0001 to trust-dns-server
2020-01-07 12:57:20 -05:00
untrusted
Revert "Add affected functions to legacy security warnings (#83)"
2019-01-13 17:31:25 -08:00
yaml-rust
Assign RUSTSEC-2018-0006 to yaml-rust
2018-10-13 18:09:39 -07:00