CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

obfstr 安全漏洞

obfstr is a Rust compile-time string library from the Casper personal developer. A security vulnerability exists in obfstr versions prior to 0.4.4, which stems from not restricting the obfstr parameter type to string slices, which may result in invalid UTF-8 conversions...

CVE-2024-58253

In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value...

CVE-2024-58253

CVE-2024-58253 affects the Rust crate obfstr prior to 0.4.4. The issue is that the obfstr! argument type is not restricted to string slices, which can cause an invalid UTF-8 conversion and produce an invalid value. The vulnerability is tied to versions before 0.4.4; updating to 0.4.4 or later res...

VApps: Verifiable Applications at Internet Scale

Blockchain technology promises a decentralized, trustless, and interoperable infrastructure. However, widespread adoption remains hindered by issues such as limited scalability, high transaction costs, and the complexity of maintaining coherent verification logic across different blockchain layer...

audio-video-metadata (>=0.1.0 <=0.1.7), fselect (>=0.3.2 <=0.8.11) +4 more potentially affected by unknown CVE via mp3-metadata (>=0.1.1 <=0.3.4)

mp3-metadata CARGO version =0.1.1, =0.1.0, =0.3.2, =0.1.2, =0.1.0, =0.2.2 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0027...

Possible unsound public API

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

RUSTSEC-2025-0063 Possible unsound public API

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

alloy-rs (=0.2.1), anndata (=0.2.0) +98 more potentially affected by unknown CVE via arrow2 (>=0.10.1 <=0.9.2)

arrow2 CARGO version =0.10.1, =0.1.0, =0.1.0, =0.6.0, =0.1.0, =0.0.1, =0.1.0, =0.2.1, =0.2.2, =0.4.0, =0.1.0, =0.1.3 - datap =0.0.1 - erc725-rs =0.1.0 - ezel =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0038...

PT-2025-17866 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A critical bug in the Rust-Miniscript satisfier causes crashes when compiling certain threshold descriptors, such as 3-of-3 with mixed conditions. No funds were lost due to this issue...

acolor (>=0.0.2 <=0.0.11), amberwindow (>=0.1.0 <=0.3.61) +105 more potentially affected by unknown CVE via macroquad (>=0.2.9 <=0.4.15)

macroquad CARGO version =0.2.9, =0.0.2, =0.1.0, =0.1.0, =0.0.4, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =0.1.7 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0035...

RUSTSEC-2025-0162 `VMABuffer::set_data` may allow out-of-bounds writes from safe code

VMABuffer::setdata was a publicly accessible safe function. It accepted an arbitrary offset and a data slice, then used the offset in unsafe pointer arithmetic before copying the slice into a mapped allocation. Affected versions did not check that the requested write range fit within the allocati...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

Video Tutorial !CVE-2025-24071 Demohttps://img.youtube.co...

[SECURITY] Fedora 41 Update: rust-sequoia-openpgp1-1.22.0-2.fc41

OpenPGP data types and associated machinery...

[SECURITY] Fedora 41 Update: rust-zerovec-0.10.4-4.fc41

Zero-copy vector backed by a byte array...

[SECURITY] Fedora 41 Update: rust-zip-2.6.1-1.fc41

Library to support the reading and writing of zip files...

[SECURITY] Fedora 41 Update: rust-url-2.5.4-1.fc41

URL library for Rust, based on the WHATWG URL Standard...

[SECURITY] Fedora 41 Update: rust-version-ranges-0.1.1-2.fc41

Performance-optimized type for generic version ranges and operations on them...

[SECURITY] Fedora 41 Update: rust-write16-1.0.0-1.fc41

A UTF-16 analog of the Write trait...