Rust lock_api crate security vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in lockapi crate before 0.4.2 for Rust, which has an unsound MappedMutexGuard and may allow data contention...

Send/Sync bound needed on T for Send/Sync impl of RcuCell<T>

Affected versions of this crate unconditionally implement Send/Sync for RcuCell. This allows users to send T: !Send to other threads while T enclosed within RcuCell, and allows users to concurrently access T: !Sync by using the APIs of RcuCell that provide access to &T. This can result in memory...

An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation insert_from can have a memory-safety issue upon a panic.

...

DEBIAN-CVE-2020-25574

An issue was discovered in the http crate before 0.1.20 for Rust. An integer overflow in HeaderMap::reserve could result in denial of service e.g., an infinite loop...

The vulnerability of the “Error::type_id” method in the Rust programming language allows a perpetrator to execute arbitrary code.

The vulnerability of the “Error::typeid” method in the Rust programming language is related to improper restrictions on operations within memory buffers. Exploiting this vulnerability allows an attacker to execute arbitrary code...

UBUNTU-CVE-2019-16141

An issue was discovered in the oncecell crate before 1.0.1 for Rust. There is a panic during initialization of Lazy...

DEBIAN-CVE-2018-1000810

The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow. This attack appear to be exploitable via str::repeat,...

binwalk

Binwalk v3 This is an updated version of the Binwalk firmware...