Building a GraphQL API with Fermyon Wasm Functions

Use this step-by-step guide to create a serverless GraphQL client that fetches GitHub repository stargazer data using Rust, WebAssembly, and Fermyon Wasm Functions...

Why We Chose Rust For Spin

When Fermyon set out to implement Spin, the decision to use Rust wasn't just logical — it felt inevitable...

GHSA-6X45-R4PR-5362 trailer mishandles allocating with a size of zero

lib.rs in the trailer crate through 0.1.2 for Rust mishandles allocating with a size of zero...

RUSTSEC-2025-0063 Possible unsound public API

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

SUSE CVE-2025-31130

gitoxide is an implementation of git written in Rust. Before 0.42.0, gitoxide uses SHA-1 hash implementations without any collision detection, leaving it vulnerable to hash collision attacks. gitoxide uses the sha1smol or sha1 crate, both of which implement standard SHA-1 without any mitigations...

gitoxide 安全漏洞

gitoxide is a git implementation written in Rust by the individual developer Sebastian Thiel. A security vulnerability exists in gitoxide versions prior to 0.17.0, which stems from the fact that files in the repository are globally writable under certain circumstances...

Vaultwarden 安全漏洞

Vaultwarden is an alternative implementation of the Bitwarden server API written in Rust by Daniel García Personal Developer. A security vulnerability exists in Vaultwarden versions prior to v1.32.5. An attacker exploiting this vulnerability could impersonate a user via a specially crafted...

Miniscript 安全漏洞

Miniscript is a Rust Bitcoin open source library for working with Miniscript. A security vulnerability exists in versions of Miniscript prior to 12.2.0 that stems from a failure to properly track the depth of a tree, thereby consuming the stack...

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in versions of Rust prior to 1.77.2 that stems from not properly escaping parameters of a batch file on Windows, which could allow an attacker to execute arbitrary shell commands ...

Mio Security Breach

Mio is the Metal I/O library for Rust. A security vulnerability exists in Mio versions v0.7.2 through prior to v0.8.11, which stems from the return of invalid tokens under certain circumstances, potentially leading to reuse after release...

SUSE CVE-2023-43669

The Tungstenite crate before 0.20.1 for Rust allows remote attackers to cause a denial of service minutes of CPU consumption via an excessive length of an HTTP header in a client handshake. The length affects both how many times a parse is attempted e.g., thousands of times and the average amount...

CVE-2023-43669

The Tungstenite crate before 0.20.1 for Rust allows remote attackers to cause a denial of service minutes of CPU consumption via an excessive length of an HTTP header in a client handshake. The length affects both how many times a parse is attempted e.g., thousands of times and the average amount...

xml-rs 代码问题漏洞

xml-rs is an XML library for Rust. A code issue vulnerability exists in xml-rs crate versions prior to 0.8.14, which stems from allowing token errors to be caused by invalid xml markup...

Google Teams Up with Ecosystem Partners to Enhance Security of SoC Processors

Google said it's working with ecosystem partners to harden the security of firmware that interacts with Android. While the Android operating system runs on what's called the application processor AP, it's just one of the many processors of a system-on-chip SoC that cater to various tasks like...

SUSE CVE-2019-15551

An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is a double free for certain grow attempts with the current capacity...

SUSE CVE-2020-36465

An issue was discovered in the generic-array crate before 0.13.3 for Rust. It violates soundness by using the arr! macro to extend lifetimes...

SputnikVM 安全漏洞

SputnikVM is a Rust-based ethereum virtual machine implementation by rust-blockchain individual developers. A security vulnerability exists in SputnikVM versions prior to 0.36.0 that stems from passing the isstatic parameter is incorrect, an issue that could lead to incorrect state transitions...

PT-2022-5135 · Juniper Networks · Juniper

Name of the Vulnerable Software and Affected Versions: Juniper versions prior to 0.15.10 Description: The issue is related to uncontrolled recursion in the Juniper GraphQL server library for Rust, which can result in a program crash. This can be caused by deeply nested fragments in a GraphQL...

GHSA-M5PQ-GVJ9-9VR8 Rust's regex crate vulnerable to regular expression denial of service

This is a cross-post of the official security advisoryadvisory. The official advisory contains a signed version with our PGP key, as well. advisory: https://groups.google.com/g/rustlang-security-announcements/c/NcNNL1Jq7Yw The Rust Security Response WG was notified that the regex crate did not...

GHSA-JV2R-JX6Q-89JG Use of Uninitialized Resource in bronzedb-protocol.

An issue was discovered in the bronzedb-protocol crate through 2021-01-03 for Rust. ReadKVExt may read from uninitialized memory locations...