9529 matches found
CVE-2024-58266
The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...
CVE-2023-53156
The transpose crate before 0.2.3 for Rust allows an integer overflow via inputwidth and inputheight arguments...
CVE-2024-58266
The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...
CVE-2024-58262
The curve25519-dalek crate before 4.1.3 for Rust has a constant-time operation on elliptic curve scalars that is removed by LLVM...
CVE-2024-58261
The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type...
CVE-2024-58265
CVE-2024-58265 affects the Rust snow crate prior to 0.9.5 when using stateful TransportState. The vulnerability allows an attacker to increment a nonce, resulting in denial of message delivery. The provided documents confirm the vulnerable component (snow crate) and the specific condition (statef...
NewStart CGSL MAIN 7.02 : rust Vulnerability (NS-SA-2025-0146)
The remote NewStart CGSL host, running version MAIN 7.02, has rust packages installed that are affected by a vulnerability: - Cargo downloads the Rust project's dependencies and compiles the project. Cargo prior to version 0.72.2, bundled with Rust prior to version 1.71.1, did not respect the uma...
Malicious code in pass-rust-core (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-6299 Malicious code in pass-rust-core (npm)
The package communicates with a domain associated with malicious activity...
[SECURITY] Fedora 41 Update: rust-sequoia-octopus-librnp-1.11.1-1.fc41
Reimplementation of RNP's interface using Sequoia for use with Thunderbird...
Fedora: Security Advisory (FEDORA-2025-51c16d6993)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 42 : rust-sequoia-octopus-librnp (2025-51c16d6993)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-51c16d6993 advisory. Update to version 1.11.1. This version includes a fix for a potential DoS-via-zip-bomb issue. Release notes:...
Fedora 41 : rust-sequoia-octopus-librnp (2025-71b9c49854)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-71b9c49854 advisory. Update to version 1.11.1. This version includes a fix for a potential DoS-via-zip-bomb issue. Release notes:...
Fedora: Security Advisory (FEDORA-2025-71b9c49854)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2025-29935 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: A critical issue exists where remote social engineering via a memetic payload results in operator-assisted application of a viscous substance, causing a denia...
aiowrap (=0.1.0), ambisonic (>=0.1.0 <=0.3.1) +157 more potentially affected by unknown CVE via slice-deque (>=0.1.16 <=0.3.0)
slice-deque CARGO version =0.1.16, =0.1.0, =0.8.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.8.0, =0.3.0, =0.3.0, =0.4.0, =0.8.0, =0.15.3 and more Source cves: unknown CVE Source advisory: OSV:GHSA-7MCQ-F592-PF7V...
Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo
CVE-2025-32463 Sudo EoP Exploit PoC Rust Using Prebuild...
SUSE CVE-2025-53549
The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that...
[SECURITY] Fedora 41 Update: selenium-manager-4.34.0-2.fc41
Selenium Manager is a command-line tool implemented in Rust that provides automated driver and browser management for Selenium...
Security update for rust-keylime
This update for rust-keylime fixes the following issues: CVE-2024-12224: idna: Fixed improper validation in punycode bsc1243861 Update to version 0.2.7+70: builddeps: bump wiremock from 0.6.2 to 0.6.3 builddeps: bump uuid from 1.16.0 to 1.17.0 lib: Introduce AgentIdentity structure gitignore: Add...