Lucene search
K

9532 matches found

CBLMariner
CBLMariner
added 2025/09/05 3:8 p.m.4 views

CVE-2025-53605 affecting package rust for versions less than 1.75.0-17

CVE-2025-53605 affecting package rust for versions less than 1.75.0-17. A patched version of the package is available...

5.9CVSS6.4AI score0.0038EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/09/05 3:8 p.m.7 views

CVE-2025-53605 affecting package rust for versions less than 1.86.0-4

CVE-2025-53605 affecting package rust for versions less than 1.86.0-4. A patched version of the package is available...

5.9CVSS7AI score0.0038EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/09/05 12:0 p.m.6 views

BiliupApi (>=0.1.0 <=0.1.7), EZDB (>=0.1.13 <=0.1.15) +1444 more potentially affected by unknown CVE via adler (>=0.2.3 <=1.0.2)

adler CARGO version =0.2.3, =0.1.0, =0.1.13, =0.1.0, =0.6.0-beta.1, =0.6.0-beta.1, =0.6.0-beta.1, =0.1.5, =0.21.0-alpha.1, =0.0.1-dev.10, =0.4.0, =4.0.1-alpha.1, =0.2.0, =0.1.0, =0.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0056...

5.7AI score
Exploits0
OSV
OSV
added 2025/09/04 11:50 p.m.5 views

CVE-2025-58359 frost-core: refresh shares with smaller min_signers will reduce group security

ZF FROST is a Rust implementation of FROST Flexible Round-Optimised Schnorr Threshold signatures. In versions 2.0.0 through 2.1.0, refresh shares with smaller minsigners will reduce security of group. The inability to change minsigners i.e. the threshold with the refresh share functionality...

6CVSS6.5AI score0.00267EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/09/04 10:26 a.m.7 views

The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::coded_input_stream::CodedInputStream::skip_group parsing of unknown fields in untrusted input.

...

5.9CVSS7AI score0.0038EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 10:3 a.m.14 views

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.

...

9.8CVSS7AI score0.0078EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 7:8 a.m.6 views

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.

...

6.5CVSS7AI score0.00667EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:10 a.m.3 views

The openssl crate before 0.10.55 for Rust allows an out-of-bounds read via an empty string to X509VerifyParamRef::set_host.

...

9.1CVSS7AI score0.00329EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/04 2:13 a.m.5 views

Rust-openssl: rust-openssl use-after-free in `md::fetch` and `cipher::fetch`

...

3.7CVSS7AI score0.00452EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/09/04 12:28 a.m.8 views

CVE-2025-57611

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 Null pointer dereference vulnerability in the dump method allows an attacker to cause a denial of service. The vulnerability exists because the method fails to check the return value of avfiltergraphdump for NULL, leading to a crash...

5.3CVSS6.9AI score0.00251EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/04 12:28 a.m.6 views

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

7.5CVSS7.1AI score0.00337EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/04 12:28 a.m.5 views

CVE-2025-57612

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 Null pointer dereference vulnerability in the name method allows an attacker to cause a denial of service. The vulnerability exists because the method fails to check for a NULL return value from the avgetsamplefmtname C function,...

7.5CVSS6.9AI score0.00337EPSS
Exploits1References1
Amazon
Amazon
added 2025/09/04 12:0 a.m.4 views

Medium: rust

Issue Overview: There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above. CVE-2025-6965 Affected Packages: rust...

9.8CVSS7AI score0.73495EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.5 views

Amazon Linux 2 : rust, --advisory ALAS2-2025-2978 (ALAS-2025-2978)

The version of rust installed on the remote host is prior to 1.86.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2978 advisory. There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns...

7.7CVSS7.1AI score0.73495EPSS
Exploits3References4
Microsoft CVE
Microsoft CVE
added 2025/09/03 9:40 p.m.5 views

rust openssl ssl::select_next_proto use after free

...

6.3CVSS7AI score0.00623EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.2 views

Fedora 44 : glycin / rust-ashpd / rust-ashpd0.11 / rust-glycin / etc (2025-bb172624a9)

The remote Fedora 44 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-bb172624a9 advisory. Update glycin to version 2.0.rc. This update also includes a bunch of related Rust dependency updates for GNOME 49.rc. Additionally, CVE-2025-58160 is...

2.3CVSS5.5AI score0.00303EPSS
Exploits0References2
NVD
NVD
added 2025/09/02 4:15 p.m.7 views

CVE-2025-57616

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 A use-after-free vulnerability in the writeinterleaved method allows an attacker to cause a denial of service or memory corruption. The method violates Rust's aliasing rules by modifying a data structure through a mutable pointer...

7.5CVSS0.00337EPSS
Exploits1References1
NVD
NVD
added 2025/09/02 4:15 p.m.3 views

CVE-2025-57614

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 Integer overflow and invalid input vulnerability in the cached method allows an attacker to cause a denial of service or potentially execute arbitrary code. The vulnerability occurs when dimension parameters are zero or exceed...

7.5CVSS0.00417EPSS
Exploits1References1
NVD
NVD
added 2025/09/02 4:15 p.m.4 views

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

7.5CVSS0.00337EPSS
Exploits1References1
OSV
OSV
added 2025/09/02 4:15 p.m.4 views

CVE-2025-57613

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 A null pointer dereference vulnerability in the input constructor function allows an attacker to cause a denial of service. The vulnerability is triggered when the avioalloccontext call fails and returns NULL, which is then stored a...

7.5CVSS6.7AI score
Exploits0References1
Rows per page
Query Builder