9500 matches found
Building the Azure IoT Edge Security Daemon in Rust
Azure IoT Edge is an open source, cross platform software project from the Azure IoT team at Microsoft that seeks to solve the problem of managing distribution of compute to the edge of your on-premise network from the cloud. This post explains some of the rationale behind our choice of Rust as t...
Building the Azure IoT Edge Security Daemon in Rust
Azure IoT Edge is an open source, cross platform software project from the Azure IoT team at Microsoft that seeks to solve the problem of managing distribution of compute to the edge of your on-premise network from the cloud. This post explains some of the rationale behind our choice of Rust as t...
EulerOS 2.0 SP8 : oniguruma (EulerOS-SA-2019-2086)
According to the versions of the oniguruma package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A use-after-free in onignewdeluxe in regext.c in Oniguruma 6.9.2 allows attackers to potentially cause information disclosure, denial of...
Medium: oniguruma
Issue Overview: A use-after-free in onignewdeluxe in regext.c in Oniguruma 6.9.2 allows attackers to potentially cause information disclosure, denial of service, or possibly code execution by providing a crafted regular expression. The attacker provides a pair of a regex pattern and a string, wit...
openSUSE Security Update : rust (openSUSE-2019-2203)
This update for rust fixes the following issues : Rust was updated to version 1.36.0. Security issues fixed : - CVE-2019-12083: a standard method can be overridden violating Rust's safety guarantees and causing memory unsafety bsc1134978 - CVE-2018-1000622: rustdoc loads plugins from world-writab...
OPENSUSE-SU-2019:2203-1 Security update for rust
This update for rust fixes the following issues: Rust was updated to version 1.36.0. Security issues fixed: - CVE-2019-12083: a standard method can be overridden violating Rust's safety guarantees and causing memory unsafety bsc1134978 - CVE-2018-1000622: rustdoc loads plugins from world writable...
Security update for rust (moderate)
openSUSE Security Update: Security update for rust Announcement ID: openSUSE-SU-2019:2203-1 Rating: moderate References: 1096945 1100691 1133283 1134978 Cross-References: CVE-2018-1000622 CVE-2019-12083 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has two...
openSUSE Security Update : rust (openSUSE-2019-2201)
This update for rust fixes the following issues : Rust was updated to version 1.36.0. Security issues fixed : - CVE-2019-12083: a standard method can be overridden violating Rust's safety guarantees and causing memory unsafety bsc1134978 - CVE-2018-1000622: rustdoc loads plugins from world-writab...
CVE-2019-16882
An issue was discovered in the string-interner crate before 0.7.1 for Rust. It allows attackers to read from memory locations associated with dangling pointers, because of a cloning flaw...
CVE-2019-16881
An issue was discovered in the portaudio-rs crate through 0.3.1 for Rust. There is a use-after-free with resultant arbitrary code execution because of a lack of unwind safety in streamcallback and streamfinishedcallback...
CVE-2019-16880
An issue was discovered in the linea crate through 0.9.4 for Rust. There is double free in the Matrix::zipelements method...
CVE-2019-16882
An issue was discovered in the string-interner crate before 0.7.1 for Rust. It allows attackers to read from memory locations associated with dangling pointers, because of a cloning flaw...
Double free
An issue was discovered in the linea crate through 0.9.4 for Rust. There is double free in the Matrix::zipelements method...
Double free
An issue was discovered in the portaudio-rs crate through 0.3.1 for Rust. There is a use-after-free with resultant arbitrary code execution because of a lack of unwind safety in streamcallback and streamfinishedcallback...
Design/Logic Flaw
An issue was discovered in the string-interner crate before 0.7.1 for Rust. It allows attackers to read from memory locations associated with dangling pointers, because of a cloning flaw...
CVE-2019-16882
CVE-2019-16882 affects the Rust string-interner crate prior to version 0.7.1. The issue arises from a cloning flaw where interners do not clone contained strings safely, leaving raw pointers to memory that may be freed, allowing attackers to read memory locations associated with dangling pointers...
CVE-2019-16881
The CVE-2019-16881 issue affects the Rust crate portaudio-rs up to version 0.3.1. The root cause is a use-after-free due to lack of unwind safety in the callbacks stream_callback and stream_finished_callback, which can allow arbitrary code execution. Multiple sources (NVD entry and Rust ecosystem...
CVE-2019-16881
An issue was discovered in the portaudio-rs crate through 0.3.1 for Rust. There is a use-after-free with resultant arbitrary code execution because of a lack of unwind safety in streamcallback and streamfinishedcallback...
CVE-2019-16880
The CVE-2019-16880 entry concerns the Rust crate linea up to version 0.9.4, where a double free vulnerability exists in the Matrix::zip_elements method. Multiple connected advisories (e.g., RUSTSEC-2019-0021 / GHSA) describe that affected crate versions may panic in trait implementations, enablin...
CVE-2019-16880
An issue was discovered in the linea crate through 0.9.4 for Rust. There is double free in the Matrix::zipelements method...