9529 matches found
[SECURITY] Fedora 41 Update: maturin-1.8.6-1.fc41
Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...
[SECURITY] Fedora 41 Update: rust-rusqlite-0.31.0-6.fc41
Ergonomic wrapper for SQLite...
[SECURITY] Fedora 41 Update: ruff-0.11.5-2.fc41
An extremely fast Python linter and code formatter, written in Rust. Ruff aims to be orders of magnitude faster than alternative tools while integrating more functionality behind a single, common interface. Ruff can be used to replace Flake8 plus dozens of plugins, Black, isort, pydocstyle,...
CVE-2024-12224 idna accepts Punycode labels that do not produce any non-ASCII when decoded
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname...
CVE-2024-12224
Public technical specifics for CVE-2024-12224 (affected components, root cause, remediation) are not present in the connected documents; monitor for updates.
CVE-2024-12224
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname...
[SECURITY] Fedora 42 Update: rust-rusqlite-0.31.0-6.fc42
Ergonomic wrapper for SQLite...
[SECURITY] Fedora 42 Update: rust-hashlink-0.10.0-1.fc42
HashMap-like containers that hold their key-value pairs in a user controllable order...
[SECURITY] Fedora 42 Update: maturin-1.8.6-1.fc42
Build and publish crates with pyo3, rust-cpython and cffi bindings as well as rust binaries as python packages...
Servo 安全漏洞
Servo is a prototype web browser engine written in the Rust language from the Servo open source. A security vulnerability exists in Servo that stems from improper validation of punycode unsafe equivalence, which could lead to hostname obfuscation...
Fedora: Security Advisory (FEDORA-2025-04894ce9bd)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : ruff / rust-hashlink / rust-rusqlite (2025-575023fff7)
The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-575023fff7 advisory. Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. ---...
RHEL 9 : keylime-agent-rust (RHSA-2025:7313)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7313 advisory. Rust agent for Keylime Security Fixes: rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 For more details about the...
RHEL 9 : python3.12-cryptography (RHSA-2025:7317)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7317 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...
CVE-2025-48753
In the anode crate 0.1.0 for Rust, data races can occur in unlock in SpinLock...
CVE-2025-48751
The processlock crate 0.1.0 for Rust allows data races in unlock...
CVE-2025-48756
In groupnumber in the scsir crate 0.2.0 for Rust, there can be an overflow because a hardware device may expect a small number of bits e.g., 5 bits for group number...
CVE-2025-48752
In the process-sync crate 0.2.2 for Rust, the drop function lacks a check for whether the pthreadmutex is unlocked...
CVE-2025-48754
In the memorypages crate 0.1.0 for Rust, division by zero can occur...
CVE-2025-48755
In the spiral-rs crate 0.2.0 for Rust, allocation can be attempted for a ZST zero-sized type...