145 matches found
CVE-2025-4432
A flaw was found in Rust's Ring package. A panic may be triggered when overflow checking is enabled. In the QUIC protocol, this flaw allows an attacker to induce this panic by sending a specially crafted packet. It will likely occur unintentionally in 1 out of every 232 packets sent or received...
CVE-2025-4432
A flaw was found in Rust's Ring package. A panic may be triggered when overflow checking is enabled. In the QUIC protocol, this flaw allows an attacker to induce this panic by sending a specially crafted packet. It will likely occur unintentionally in 1 out of every 232 packets sent or received...
AZL-74894 CVE-2025-4207 affecting package rust 1.90.0-3
Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13,...
CVE-2022-24713 affecting package rust for versions less than regex-1.8.4
CVE-2022-24713 affecting package rust for versions less than regex-1.8.4. A patched version of the package is available...
CVE-2023-45853 affecting package rust for versions less than 1.85.0-1
CVE-2023-45853 affecting package rust for versions less than 1.85.0-1. A patched version of the package is available...
CVE-2022-23639 affecting package rust for versions less than crossbeam_utils-0.8.7
CVE-2022-23639 affecting package rust for versions less than crossbeamutils-0.8.7. A patched version of the package is available...
CVE-2022-31394 affecting package rust for versions less than hyper-0.14.25
CVE-2022-31394 affecting package rust for versions less than hyper-0.14.25. A patched version of the package is available...
CVE-2023-26964 affecting package rust for versions less than h2-0.3.26
CVE-2023-26964 affecting package rust for versions less than h2-0.3.26. A patched version of the package is available...
Linux Distros Unpatched Vulnerability : CVE-2023-40030
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cargo downloads a Rust project's dependencies and compiles the project. Starting in Rust 1.60.0 and prior to 1.72, Cargo did not escape Cargo feature names when...
Linux Distros Unpatched Vulnerability : CVE-2022-46176
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cargo is a Rust package manager. The Rust Security Response WG was notified that Cargo did not perform SSH host key verification when cloning indexes and...
Linux Distros Unpatched Vulnerability : CVE-2021-28876
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls iteratorgetunchecked more than once for the same index...
CVE-2024-9681 affecting package rust for versions less than 1.72.0-10
CVE-2024-9681 affecting package rust for versions less than 1.72.0-10. A patched version of the package is available...
SUSE: Security Advisory (SUSE-SU-2022:0200-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-45853 affecting package rust for versions less than 1.72.0-5
CVE-2023-45853 affecting package rust for versions less than 1.72.0-5. A patched version of the package is available...
CVE-2022-46176 affecting package rust 1.59.0-1
CVE-2022-46176 affecting package rust 1.59.0-1. No patch is available currently...
CVE-2021-46023 affecting package rust 1.59.0-1
CVE-2021-46023 affecting package rust 1.59.0-1. This CVE either no longer is or was never applicable...
CVE-2023-0215 affecting package rust 1.59.0-1
CVE-2023-0215 affecting package rust 1.59.0-1. This CVE either no longer is or was never applicable...
CVE-2023-23914 affecting package rust 1.59.0-1
CVE-2023-23914 affecting package rust 1.59.0-1. This CVE either no longer is or was never applicable...
Fedora 41 : rust (2024-3534c44ef9)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-3534c44ef9 advisory. Automatic update for rust-1.77.2-1.fc41. Changelog Tue Apr 9 2024 Josh Stone - 1.77.2-1 - Update to 1.77.2; Fixes RHBZ2274248 CVE-2024-24576 Tenable has...
AZL-48304 CVE-2024-43806 affecting package rust for versions less than 1.72.0-9
Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using rustix::fs::Dir using the linuxraw backend, it's possible for the iterator to "get stuck" when an IO error is encountered. Combined with a memory over-allocation issue in rustix::fs::Dir::readmore, this can cause quick and...