9532 matches found
CVE-2025-58160 Tracing logging user input may result in poisoning logs with ANSI escape sequences
tracing is a framework for instrumenting Rust programs to collect structured, event-based diagnostic information. Prior to version 0.3.20, tracing-subscriber was vulnerable to ANSI escape sequence injection attacks. Untrusted user input containing ANSI escape sequences could be injected into...
AskAI (=0.1.0), Druid_task1 (=0.1.0) +3840 more potentially affected by CVE-2025-58160 via tracing-subscriber (>=0.1.6 <=0.3.19)
tracing-subscriber CARGO version =0.1.6, =0.1.0, =0.7.0, =0.5.0, =0.5.0, =0.5.0, =0.1.5, =0.0.1-dev.10, =1.1.0, =0.0.7, =0.0.16 - acril =0.1.0 and more Source cves: CVE-2025-58160 Source advisory: OSV:GHSA-XWFJ-JGWM-7WP5...
AskAI (=0.1.0), Druid_task1 (=0.1.0) +3840 more potentially affected by CVE-2025-58160 via tracing-subscriber (>=0.1.6 <=0.3.19)
tracing-subscriber CARGO version =0.1.6, =0.1.0, =0.7.0, =0.5.0, =0.5.0, =0.5.0, =0.1.5, =0.0.1-dev.10, =1.1.0, =0.0.7, =0.0.16 - acril =0.1.0 and more Source cves: CVE-2025-58160 Source advisory: OSV:RUSTSEC-2025-0055...
Exploit for Path Traversal in Rarlab Winrar
WinRAR Exploit Tool - Rust Edition Advanced WinRAR Path T...
Exploit for CVE-2007-2447
CVE-2007-2447 Samba Exploit A Rust implementation of the CVE-...
[SECURITY] Fedora 42 Update: keylime-agent-rust-0.2.8-1.fc42
The Keylime agent Requires: keylime-base Requires: keylime-agent-rust-pull...
Linux Distros Unpatched Vulnerability : CVE-2020-35920
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the socket2 crate before 0.3.16 for Rust. It has false expectations about the std::net::SocketAddr memory representation...
Linux Distros Unpatched Vulnerability : CVE-2020-35919
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation. CVE-2020-35919...
Linux Distros Unpatched Vulnerability : CVE-2020-25573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the linked-hash-map crate before 0.5.3 for Rust. It creates an uninitialized NonNull pointer, which violates a non-null constraint...
Linux Distros Unpatched Vulnerability : CVE-2020-25576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the randcore crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints. CVE-2020-25576...
Linux Distros Unpatched Vulnerability : CVE-2019-16141
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the oncecell crate before 1.0.1 for Rust. There is a panic during initialization of Lazy. CVE-2019-16141 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2021-32714
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hyper is an HTTP library for Rust. In versions prior to 0.14.10, hyper's HTTP server and client code had a flaw that could trigger an integer overflow when...
Linux Distros Unpatched Vulnerability : CVE-2020-35861
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the bumpalo crate before 3.2.1 for Rust. The realloc feature allows the reading of unknown memory. Attackers can potentially read...
Linux Distros Unpatched Vulnerability : CVE-2018-21000
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the safe-transmute crate before 0.10.1 for Rust. A constructor's arguments are in the wrong order, causing heap memory corruption...
Linux Distros Unpatched Vulnerability : CVE-2021-26956
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because bytes from an X server can be interpreted as any data...
Linux Distros Unpatched Vulnerability : CVE-2020-36465
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the generic-array crate before 0.13.3 for Rust. It violates soundness by using the arr! macro to extend lifetimes. CVE-2020-36465 Not...
Linux Distros Unpatched Vulnerability : CVE-2018-20991
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the smallvec crate before 0.6.3 for Rust. The Iterator implementation mishandles destructors, leading to a double free. CVE-2018-2099...
Linux Distros Unpatched Vulnerability : CVE-2020-35904
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the crossbeam-channel crate before 0.4.4 for Rust. It has incorrect expectations about the relationship between the memory allocation...
Linux Distros Unpatched Vulnerability : CVE-2020-35711
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in the arc-swap crate before 0.4.8 and 1.x before 1.1.0 for Rust. Use of arcswap::access::Map with the Constant test helper or with...
Linux Distros Unpatched Vulnerability : CVE-2018-20989
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the untrusted crate before 0.6.2 for Rust. Error handling can trigger an integer underflow and panic. CVE-2018-20989 Note that Nessus...