CVE-2018-25023

The CVE-2018-25023 issue affects the Rust smallvec crate prior to 0.6.13. It allows creating an uninitialized value of any type, including references, due to the unsafe handling of uninitialized memory. The vulnerability is documented across OSV/GHSA entries, which note the fix involved avoiding ...

CVE-2018-25023

An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type...

Rust rusqlite crate 资源管理错误漏洞

Rust rusqlite crate is an ergonomic wrapper for using SQLite from Rust. it attempts to expose a rust-postgres-like interface. versions 0.25.x prior to 0.25.4 and 0.26.x prior to 0.26.2 of Rust rusqlite crate are vulnerable to security vulnerability, which stems from a resource management error in...

SUSE SLED15 / SLES15 Security Update : MozillaThunderbird (SUSE-SU-2021:4150-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:4150-1 advisory. - An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted...

adiscord (>=0.0.1 <=0.0.3), alpaca-data-api (>=0.1.0 <=0.1.2) +20 more potentially affected by unknown CVE via dotenv_codegen (>=0.10.0 <=0.9.3)

dotenvcodegen CARGO version =0.10.0, =0.0.1, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.1.2, =0.7.0, =0.1.0, =0.1.0, =0.3.0 - meep =1.0.1 - ncrsdk =0.1.0 - new-rawr =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0142...

Hela (>=0.1.0 <=0.1.4), IMAPServer (=0.2.0) +1256 more potentially affected by unknown CVE via dotenv (>=0.10.1 <=0.9.0)

dotenv CARGO version =0.10.1, =0.1.0, =0.1.0, =0.2.0-beta.4, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.4.0, =0.4.3 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0141...

compu (>=0.1.0 <=0.2.0), fie (>=0.16.0 <=0.16.3) +2 more potentially affected by CVE-2020-36846 +1 more via compu-brotli-sys (=0.1.3)

compu-brotli-sys CARGO version =0.1.3 is affected by a known vulnerability. The following packages have a transitive dependency on compu-brotli-sys and may be impacted: - compu =0.1.0, =0.16.0, =1.0.0, =1.0.10 Source cves: CVE-2020-36846, CVE-2020-8927 Source advisory: OSV:RUSTSEC-2021-0132...

NeteaseCloudMusicRustApi (=0.1.1), RustMusic (=0.1.0) +388 more potentially affected by CVE-2020-36846 +1 more via brotli-sys (>=0.1.2 <=0.3.2)

brotli-sys CARGO version =0.1.2, =0.1.0, =0.1.3, =0.3.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.0, =0.1.0, =0.3.1 and more Source cves: CVE-2020-36846, CVE-2020-8927 Source advisory: OSV:RUSTSEC-2021-0131...

Integer overflow in the bundled Brotli C library

A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. An updated version of brotli-sys has not...

RUSTSEC-2021-0131 Integer overflow in the bundled Brotli C library

A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. An updated version of brotli-sys has not...

Fedora: Security Advisory for rust-rusqlite (FEDORA-2021-f454d8494c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for rust-libsqlite3-sys (FEDORA-2021-f454d8494c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for rust-libsqlite3-sys (FEDORA-2021-3d78d81491)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for rust-rusqlite (FEDORA-2021-3d78d81491)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 35 Update: rust-libsqlite3-sys-0.23.2-1.fc35

Native bindings to the libsqlite3 library...

[SECURITY] Fedora 34 Update: rust-libsqlite3-sys-0.23.2-1.fc34

Native bindings to the libsqlite3 library...

[SECURITY] Fedora 34 Update: rust-rusqlite-0.26.3-1.fc34

Ergonomic wrapper for SQLite...

Fedora: Security Advisory for rust-tiny_http0.6 (FEDORA-2021-c824326120)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for rust-drg (FEDORA-2021-571e3ed33c)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for rust-tiny_http (FEDORA-2021-c824326120)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...