8.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
64.2%
Updated rust packages fix security vulnerability This update mitigates a security concern in the Unicode standard, affecting source code containing “bidirectional override” Unicode codepoints: in some cases the use of those codepoints could lead to the reviewed code being different than the compiled code (CVE-2021-42574). rustc mitigates the issue by issuing two new deny-by-default lints detecting the affected codepoints in string literals and in comments. The lints will prevent source code files containing those codepoints from being compiled, protecting developers and users from the attack. This update also provides new features and bugfixes included in Rust since the previously packaged version 1.51.1. See the referenced release notes for details.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 8 | noarch | rust | < 1.56.1-1 | rust-1.56.1-1.mga8 |
blog.rust-lang.org/2021/05/06/Rust-1.52.0.html
blog.rust-lang.org/2021/06/17/Rust-1.53.0.html
blog.rust-lang.org/2021/07/29/Rust-1.54.0.html
blog.rust-lang.org/2021/09/09/Rust-1.55.0.html
blog.rust-lang.org/2021/10/21/Rust-1.56.0.html
blog.rust-lang.org/2021/11/01/Rust-1.56.1.html
bugs.mageia.org/show_bug.cgi?id=29616
www.openwall.com/lists/oss-security/2021/11/01/1
8.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
64.2%