Lucene search
K

9529 matches found

SUSE Linux
SUSE Linux
added 2025/06/30 7:14 a.m.3 views

Security update for himmelblau

This update for himmelblau fixes the following issues: CVE-2025-5791: Fixed using deprecated users crate bsc1244202 CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242648 Update to version 0.7.17+git.0.1ebdab0 Update sccache-action version to use new...

8.4CVSS7.3AI score0.00452EPSS
Exploits0References8
Microsoft Secure
Microsoft Secure
added 2025/06/27 6:30 p.m.5 views

Unveiling RIFT: Enhancing Rust malware analysis through pattern matching

Today, Microsoft Threat Intelligence Center is excited to announce the release of RIFT , a tool designed to assist malware analysts automate the identification of attacker-written code within Rust binaries. Known for its efficiency, type safety, and robust memory safety, Rust has increasingly...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/27 12:0 a.m.3 views

SUSE SLED15: libekmfweb1 / libekmfweb1-devel / libkmipclient1 / osasnmpd / etc (SUSE-SU-2025:02017-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02017-1 advisory. Security issues fixed: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate...

3.7CVSS5.8AI score0.00452EPSS
Exploits0References4
Akamai Blog
Akamai Blog
added 2025/06/26 10:20 a.m.6 views

Why We Chose Rust For Spin

When Fermyon set out to implement Spin, the decision to use Rust wasn't just logical — it felt inevitable...

5.7AI score
Exploits0
CNNVD
CNNVD
added 2025/06/26 12:0 a.m.6 views

Mozilla neqo 安全漏洞

Mozilla neqo is a Rust protocol library from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla neqo versions 0.4.24 through 0.13.2, which stems from improper input validation and may cause a crash...

6.5CVSS6.4AI score0.00213EPSS
Exploits0References2
Fedora
Fedora
added 2025/06/25 1:43 a.m.7 views

[SECURITY] Fedora 41 Update: mirrorlist-server-3.0.7-7.fc41

The mirrorlist-server uses the data created by MirrorManager2 https://github.com/fedora-infra/mirrormanager2 to answer client request for the "best" mirror. This implementation of the mirrorlist-server is written in Rust. The original version of the mirrorlist-server was part of the MirrorManager...

8.8CVSS7.3AI score0.00443EPSS
Exploits1
Fedora
Fedora
added 2025/06/25 1:43 a.m.9 views

[SECURITY] Fedora 41 Update: keylime-agent-rust-0.2.7-5.fc41

Rust agent for Keylime...

8.8CVSS7.4AI score0.00443EPSS
Exploits1
Fedora
Fedora
added 2025/06/25 1:19 a.m.8 views

[SECURITY] Fedora 42 Update: mirrorlist-server-3.0.7-7.fc42

The mirrorlist-server uses the data created by MirrorManager2 https://github.com/fedora-infra/mirrormanager2 to answer client request for the "best" mirror. This implementation of the mirrorlist-server is written in Rust. The original version of the mirrorlist-server was part of the MirrorManager...

8.8CVSS7.3AI score0.00443EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.4 views

PermRust: a Token-Based Permission System for Rust

Permission systems which restrict access to system resources are a well-established technology in operating systems, especially for smartphones. However, as such systems are implemented in the operating system they can at most manage access on the process-level. Since moderns software often reuse...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.55 views

deepSURF: Detecting Memory Safety Vulnerabilities in Rust through Fuzzing LLM-Augmented Harnesses

Although Rust ensures memory safety by default, it also permits the use of unsafe code, which can introduce memory safety vulnerabilities if misused. Unfortunately, existing tools for detecting memory bugs in Rust typically exhibit limited detection capabilities, inadequately handle Rust-specific...

7.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/20 9:23 p.m.7 views

CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS7.2AI score0.00154EPSS
Exploits0References4
CVE
CVE
added 2025/06/20 5:21 p.m.19 views

CVE-2025-52484

The CVE concerns risc0-zkvm prior to version 2.1.0. A missing constraint in the rv32im circuit allows a malicious prover to exploit any 3-register RISC-V instruction (e.g., remu, divu) by making rs1 appear equal to rs2, potentially compromising zkVM computations. Affected releases: risc0-zkvm 2.0...

6.9CVSS6.6AI score0.00237EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/06/20 5:21 p.m.9 views

CVE-2025-52484 RISC Zero zkVM Underconstrained Vulnerability

RISC Zero is a general computing platform based on zk-STARKs and the RISC-V microarchitecture. Due to a missing constraint in the rv32im circuit, any 3-register RISC-V instruction including remu and divu in risc0-zkvm 2.0.0, 2.0.1, and 2.0.2 are vulnerable to an attack by a malicious prover. The...

6.9CVSS0.00237EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/06/20 5:21 p.m.7 views

CVE-2025-52484 RISC Zero zkVM Underconstrained Vulnerability

RISC Zero is a general computing platform based on zk-STARKs and the RISC-V microarchitecture. Due to a missing constraint in the rv32im circuit, any 3-register RISC-V instruction including remu and divu in risc0-zkvm 2.0.0, 2.0.1, and 2.0.2 are vulnerable to an attack by a malicious prover. The...

6.9CVSS7.2AI score0.00237EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2025/06/19 7:14 a.m.2 views

Security update for s390-tools

This update for s390-tools fixes the following issues: Security issues fixed: CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: Added the new IBM z17 9175 processor type. Patch Instructions: To install this SUSE update use the SUSE...

6.3CVSS7.2AI score0.00452EPSS
Exploits0References6
OSV
OSV
added 2025/06/19 7:14 a.m.3 views

SUSE-SU-2025:02017-1 Security update for s390-tools

This update for s390-tools fixes the following issues: Security issues fixed: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: - Added the new IBM z17 9175 processor type...

3.7CVSS4.6AI score0.00452EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/06/19 3:15 a.m.3 views

SUSE CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS6.6AI score0.00154EPSS
Exploits0References3
Fedora
Fedora
added 2025/06/18 2:43 p.m.8 views

[SECURITY] Fedora 42 Update: rust-git-interactive-rebase-tool-2.4.1-9.fc42

Full-featured terminal-based sequence editor for Git interactive rebase...

8.8CVSS5.6AI score0.00443EPSS
Exploits1
OSV
OSV
added 2025/06/18 10:15 a.m.2 views

DEBIAN-CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS5.7AI score0.00154EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.2 views

UBUNTU-CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS6.2AI score0.00154EPSS
Exploits0References13
Rows per page
Query Builder