openSUSE: Security Advisory for rust, (openSUSE-SU-2020:0933-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:0933-1 Security update for rust, rust-cbindgen

This update for rust, rust-cbindgen fixes the following issues: rust was updated for use by Firefox 76ESR. - Fixed miscompilations with rustc 1.43 that lead to LTO failures bsc1173202 Update to version 1.43.1 - Updated openssl-src to 1.1.1g for CVE-2020-1967. - Fixed the stabilization of AVX-512...

Security update for rust, rust-cbindgen (moderate)

openSUSE Security Update: Security update for rust, rust-cbindgen Announcement ID: openSUSE-SU-2020:0933-1 Rating: moderate References: 1115645 1154817 1173202 Cross-References: CVE-2020-1967 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now...

accepted (>=0.1.0 <=0.1.20), actors-rs (>=0.1.0 <=0.1.4) +328 more potentially affected by CVE-2020-25573 via linked-hash-map (>=0.0.10 <=0.4.2)

linked-hash-map CARGO version =0.0.10, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.5.0, =0.3.1, =0.3.2, =0.1.0, =0.1.0, =0.7.1 and more Source cves: CVE-2020-25573 Source advisory: OSV:RUSTSEC-2020-0026...

OSS-Fuzz - Continuous Fuzzing Of Open Source Software

Fuzz testing is a well-known technique for uncovering programming errors in software. Many of these detectable errors, like buffer overflow, can have serious security implications. Google has found thousands of security vulnerabilities and stability bugs by deploying guided in-process fuzzing of...

afterburn (=4.1.0), aoaddons (>=0.1.1 <=0.1.6) +55 more potentially affected by unknown CVE via pnet_packet (>=0.20.0 <=0.26.0)

pnetpacket CARGO version =0.20.0, =0.1.1, =0.0.2, =0.6.0, =0.1.0, =1.3.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.3.1, =0.4.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0167...

Exploit for Out-of-bounds Write in Microsoft

CVE-2020-1054 CVE-2020-1054 LPE for Windows 7x64 !image 1d...

CVE-2020-13759

rust-vmm vm-memory before 0.1.1 and 0.2.x before 0.2.1 allows attackers to cause a denial of service loss of IP networking because readobj and writeobj do not properly access memory. This affects aarch64 with musl or glibc and x8664 with musl...

CVE-2020-13759

rust-vmm vm-memory before 0.1.1 and 0.2.x before 0.2.1 allows attackers to cause a denial of service loss of IP networking because readobj and writeobj do not properly access memory. This affects aarch64 with musl or glibc and x8664 with musl...

Code injection

rust-vmm vm-memory before 0.1.1 and 0.2.x before 0.2.1 allows attackers to cause a denial of service loss of IP networking because readobj and writeobj do not properly access memory. This affects aarch64 with musl or glibc and x8664 with musl...

CVE-2020-13759

CVE-2020-13759 affects rust-vmm/vm-memory before 0.1.1 and 0.2.x before 0.2.1. The vulnerability arises from improper memory access in read_obj and write_obj, enabling a denial of service (loss of IP networking) on aarch64 (musl/glibc) and x86_64 (musl). Affected versions require upgrading to a f...

traitobject assumes the layout of fat pointers

This crate gets the data pointer from fat pointers assuming that the first element in a fat pointer is the data pointer. This is currently true, but it may change in a future Rust version, leading to memory corruption. This has been fixed in the master branch of the crate, but is has not been...

bat (=0.18.0), buffett-core (>=0.1.0 <=0.1.1) +73 more potentially affected by CVE-2020-36434 via sys-info (>=0.4.1 <=0.7.0)

sys-info CARGO version =0.4.1, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =1.3.0, =0.29.0, =0.20.0, =0.1.0, =0.1.0, =1.3.0, =1.8.0, =0.7.0, =0.7.0, =0.31.2 and more Source cves: CVE-2020-36434 Source advisory: OSV:RUSTSEC-2020-0100...

fac (>=0.5.2 <=0.5.3) potentially affected by CVE-2020-35874 via internment (=0.3.13)

internment CARGO version =0.3.13 is affected by a known vulnerability. The following packages have a transitive dependency on internment and may be impacted: - fac =0.5.2, =0.5.3 Source cves: CVE-2020-35874 Source advisory: OSV:RUSTSEC-2020-0017...

admin (=0.1.1), aocleaderboard (>=0.1.0 <=0.6.1) +197 more potentially affected by CVE-2020-35882 via rocket (=0.4.11)

rocket CARGO version =0.4.11 is affected by a known vulnerability. The following packages have a transitive dependency on rocket and may be impacted: - admin =0.1.1 - aocleaderboard =0.1.0, =3.5.0, =0.8.0, =0.10.0, =0.16.0, =0.3.0, =0.4.0 - automaat-server =0.1.0 - aw-client-rust =0.1.0 -...

Gen_Prime (>=0.1.0 <=1.1.9), anchor-token (>=0.0.1 <=0.3.0-alpha.1) +93 more potentially affected by CVE-2020-35880 via bigint (>=1.0.5 <=4.4.3)

bigint CARGO version =1.0.5, =0.1.0, =0.0.1, =3.6.1, =1.0.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.0.1 - csepicwalletapi =1.0.0 and more Source cves: CVE-2020-35880 Source advisory: OSV:RUSTSEC-2020-0025...

RUSTSEC-2020-0161 `array!` macro is unsound in presence of traits that implement methods it calls internally

Affected versions of this crate called some methods using auto-ref. The affected code looked like this. rust let mut arr = $crate::core::mem::MaybeUninit::uninit; let mut vec = $crate::ArrayVec::::newarr.asmutptr as mut T; In this case, the problem is that asmutptr is a method of &mut MaybeUninit...

futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer

Affected versions of the crate used a UnsafeCell in thread-local storage to return a noop waker reference, assuming that the reference would never be returned from another thread. This resulted in a segmentation fault crash if Waker::wakebyref was called on a waker returned from another thread du...

The Safety Boat: Kubernetes and Rust

Our team, DeisLabs, recently released a new piece of software called Krustlet, which is a tool for running WebAssembly modules on the popular, open-source container management tool called Kubernetes. Kubernetes is used quite extensively to run cloud software across many vendors and companies and ...

RUSTSEC-2020-0012 Relies on undefined behavior of `char::from_u32_unchecked`

The Windows implementation of this crate relied on the behavior of std::char::fromu32unchecked when its safety clause is violated. Even though this worked with Rust versions up to 1.42 at least, that behavior could change with any new Rust version, possibly leading a security issue. The flaw was...