196 matches found
Rust Security Vulnerabilities
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. bigint crate through 2020-05-07 for Rust A security vulnerability exists that allows soundness violations...
Rust crayon crate 安全漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in crayon crate in Mozilla Rust version 2020-08-31, which stems from a memory security violation via a handle-like handle. No details of the vulnerability are provided at this tim...
Rust Resource Management Error Vulnerability
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. alpm-rs crate through 2020-08-20 for Rust A security vulnerability exists that stems from StrcCtx performing incorrect memory reallocations...
Rust Resource Management Error Vulnerability
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. ws crate through 2020-09-25 for Rust A security vulnerability exists that stems from the outgoing buffer not being properly constrained, leading to a remote memory consumption attack...
Rust arr crate 安全漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Mozilla Rust versions prior to 2020-08-25 in arr crate, which stems from a buffer overflow in Index and IndexMut. No details of the vulnerability are provided at this time...
Rust Security Vulnerabilities
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust obstack crate before 0.1.4, which stems from possible unaligned references...
Rust 缓冲区错误漏洞
Rust is a general-purpose, compiled programming language from the Mozilla Foundation. Mozilla Rust version prior to 2020-09-03 has an ordnung crate in buffer overflow vulnerability that stems from Vec violating memory safety through out-of-bounds access to large volumes. No details of the...
An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with unit().
...
DEBIAN-CVE-2020-25791
An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation, the array size is not checked when constructed with unit...
UBUNTU-CVE-2020-25796
An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the InlineArray implementation, an unaligned reference may be generated for a type that has a large alignment requirement...
DEBIAN-CVE-2020-25575
An issue was discovered in the failure crate through 0.1.5 for Rust. It may introduce "compatibility hazards" in some applications, and has a type confusion flaw when downcasting. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: This may overlap...
Rust Cross-Site Scripting Vulnerability
Rust is a general-purpose, compiled programming language. A cross-site scripting vulnerability exists in versions prior to rgb crate 0.8.20, which stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to read and write data i...
CVE-2018-20995
An issue was discovered in the slice-deque crate before 0.1.16 for Rust. moveheadunchecked allows memory corruption because deque updates are mishandled...
UBUNTU-CVE-2018-20989
An issue was discovered in the untrusted crate before 0.6.2 for Rust. Error handling can trigger an integer underflow and panic...
UBUNTU-CVE-2018-20991
An issue was discovered in the smallvec crate before 0.6.3 for Rust. The Iterator implementation mishandles destructors, leading to a double free...
ALPINE-CVE-2019-12083
The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains a stabilized method which, if overridden, can violate Rust's safety guarantees and cause memory unsafety. If the Error::typeid method is overridden then any type can be safely cast to any other type, causing memory safet...