Mozilla Rust has an unspecified vulnerability (CNVD-2022-03131)

A security vulnerability exists in Mozilla Rust, a general-purpose, compiled programming language from the Mozilla Foundation. The vulnerability stems from the fact that security-related validation of file extensions may be compromised. The NSString method used to convert to a string may return...

Oracle Linux 8 : rust-toolset:ol8 (ELSA-2021-4270)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4270 advisory. rust-toolset 1.54.0-1 - Update to Rust and Cargo 1.54.0. 1.53.0-1 - Update to Rust and Cargo 1.53.0. rust 1.54.0-2 - Make std-static-wasm arch-specific to avoid...

RHEL 7 : rust-toolset-1.54-rust (RHSA-2021:4694)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4694 advisory. Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries. Security...

CentOS 7 : firefox (RHSA-2021:3791)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:3791 advisory. - crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the...

AskAI (=0.1.0), BeerHolderBot (>=0.1.0 <=0.3.8) +28976 more potentially affected by CVE-2021-45710 via tokio (>=0.1.16 <=1.8.1)

tokio CARGO version =0.1.16, =0.1.0, =0.1.0, =1.0.2, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =1.0.0-1, =0.1.0, =0.2.1 and more Source cves: CVE-2021-45710 Source advisory: OSV:RUSTSEC-2021-0124...

Moderate: Red Hat Security Advisory: rust-toolset-1.54-rust security update

An update for rust-toolset-1.54-rust is now available for Red Hat Developer Tools. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

rust-toolset:ol8 security, bug fix, and enhancement update

rust-toolset 1.54.0-1 - Update to Rust and Cargo 1.54.0. 1.53.0-1 - Update to Rust and Cargo 1.53.0. rust 1.54.0-2 - Make std-static-wasm arch-specific to avoid s390x. 1.54.0-1 - Update to 1.54.0. 1.53.0-2 - Use llvm-ranlib to fix wasm archives. 1.53.0-1 - Update to 1.53.0. 1.52.1-2 - Set...

CVE-2021-43620

An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::fromptr on a pointer to the string buffer, the string ...

CVE-2021-43620

An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::fromptr on a pointer to the string buffer, the string ...

Design/Logic Flaw

An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::fromptr on a pointer to the string buffer, the string ...

CVE-2021-43620

CVE-2021-43620 affects the fruity crate (up to 0.2.0) for Rust. The issue stems from security-relevant validation of filename extensions and the use of NSString-to-string conversion that may return partial results. Specifically, the code can call CStr::from_ptr on a pointer to the string buffer, ...

CVE-2021-43620

An issue was discovered in the fruity crate through 0.2.0 for Rust. Security-relevant validation of filename extensions is plausibly affected. Methods of NSString for conversion to a string may return a partial result. Because they call CStr::fromptr on a pointer to the string buffer, the string ...

Rust 安全漏洞

A security vulnerability exists in Mozilla Rust, a general-purpose, compiled programming language from the Mozilla Foundation. The vulnerability stems from the fact that security-related validation of file extensions may be compromised. The NSString method used to convert to a string may return...

RUSTSEC-2021-0123 Converting `NSString` to a String Truncates at Null Bytes

Methods of NSString for conversion to a string may return a partial result. Since they call CStr::fromptr on a pointer to the string buffer, the string is terminated at the first null byte, which might not be the end of the string. In addition to the vulnerable functions listed for this issue, th...

Fedora: Security Advisory for rust (FEDORA-2021-443139f67c)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Photon OS 3.0: Rust PHSA-2021-3.0-0324

An update of the rust package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0324. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if descriptio...

Photon OS 4.0: Rust PHSA-2021-4.0-0122

An update of the rust package has been released. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0122. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc...

[SECURITY] Fedora 33 Update: rust-1.56.1-1.fc33

Rust is a systems programming language that runs blazingly fast, prevents segfaults, and guarantees thread safety. This package includes the Rust compiler and documentation generator...

CentOS 8 : rust-toolset:rhel8 (CESA-2021:4270)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4270 advisory. - rust: incorrect parsing of extraneous zero characters at the beginning of an IP address string CVE-2021-29922 Note that Nessus has not tested for this issue b...

RHEL 8 : rust-toolset:rhel8 (RHSA-2021:4590)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4590 advisory. Rust Toolset provides the Rust programming language compiler rustc, the cargo build tool and dependency manager, and required libraries. Security...