[SECURITY] Fedora 34 Update: rust-1.58.1-1.fc34

Rust is a systems programming language that runs blazingly fast, prevents segfaults, and guarantees thread safety. This package includes the Rust compiler and documentation generator...

Fedora: Security Advisory for rust (FEDORA-2022-2c73789458)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for rust (FEDORA-2022-1bafa3fc91)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

A malicious coder can get unsound access to TCell or TLCell memory

This is impossible to do by accident, but by carefully constructing marker types to be covariant, a malicious coder can cheat the singleton check in TCellOwner and TLCellOwner, giving unsound access to cell memory. This could take the form of getting two mutable references to the same memory, or ...

RUSTSEC-2022-0007 A malicious coder can get unsound access to TCell or TLCell memory

This is impossible to do by accident, but by carefully constructing marker types to be covariant, a malicious coder can cheat the singleton check in TCellOwner and TLCellOwner, giving unsound access to cell memory. This could take the form of getting two mutable references to the same memory, or ...

High-Severity Rust Programming Bug Could Lead to File, Directory Deletion

The maintainers of the Rust programming language have released a security update for a high-severity vulnerability that could be abused by a malicious party to purge files and directories from a vulnerable system in an unauthorized manner. "An attacker could use this security issue to trick a...

BrewStillery (>=1.0.0 <=6.0.2), Inflector (>=0.1.1 <=0.11.2) +3106 more potentially affected by unknown CVE via thread_local (>=0.2.7 <=1.0.1)

threadlocal CARGO version =0.2.7, =1.0.0, =0.1.1, =0.7.0, =0.1.0, =0.0.6, =0.1.1, =0.1.4, =0.1.0, =0.2.1, =0.2.3 - addr2line =0.6.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2022-0006...

SUSE SLED15 / SLES15 Security Update : rust1.56 (SUSE-SU-2022:0149-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0149-1 advisory. - Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust...

openSUSE 15 Security Update : rust1.56 (openSUSE-SU-2022:0149-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0149-1 advisory. - Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security...

SUSE-SU-2022:0149-1 Security update for rust1.56

This update for rust1.56 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::removedirall bsc1194767...

OPENSUSE-SU-2022:0149-1 Security update for rust1.56

This update for rust1.56 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::removedirall bsc1194767...

AZL-41829 CVE-2022-0326 affecting package rust for versions less than 1.75.0-1

NULL Pointer Dereference in Homebrew mruby prior to 3.2...

CVE-2022-21658

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

AZL-8337 CVE-2022-21658 affecting package rust for versions less than 1.59.0-1

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

CVE-2022-21658

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

Race condition

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

CVE-2022-21658

A race condition flaw was found in Rust's std::fs::removedirall function. Rust applications that use this function may be vulnerable to a race condition where an unprivileged attacker can trick the application into deleting files and directories, causing an impact on system data integrity. If the...

CVE-2022-21658

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

UBUNTU-CVE-2022-21658

Rust is a multi-paradigm, general-purpose programming language designed for performance and safety, especially safe concurrency. The Rust Security Response WG was notified that the std::fs::removedirall standard library function is vulnerable a race condition enabling symlink following CWE-363. A...

Rust 竞争条件问题漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A Competing Conditions Issue vulnerability exists in Rust that arises from the product's std::fs::removedirall function that does not validate user permissions. An attacker could use this vulnerability to remove...