9496 matches found
CVE-2018-1000810
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow. This attack appear to be exploitable via str::repeat,...
CVE-2018-1000810
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow. This attack appear to be exploitable via str::repeat,...
Integer overflow
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow. This attack appear to be exploitable via str::repeat,...
CVE-2018-1000810
CVE-2018-1000810 affects the Rust standard library up to version 1.29.0 (including 1.28.0, 1.27.x, etc.), caused by a CWE-680 integer overflow to buffer overflow in the internal handling of str::repeat. The vulnerability could lead to a buffer overflow and is fixed in 1.29.1. Affected products re...
CVE-2018-1000810
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow. This attack appear to be exploitable via str::repeat,...
CVE-2018-1000810
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow. This attack appear to be exploitable via str::repeat,...
Fedora Update for rust FEDORA-2018-0071ad34f4
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for rust FEDORA-2018-69cce46328
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 29 Update: rust-1.29.1-2.fc29
Rust is a systems programming language that runs blazingly fast, prevents segfaults, and guarantees thread safety. This package includes the Rust compiler and documentation generator...
[SECURITY] Fedora 27 Update: rust-1.29.1-2.fc27
Rust is a systems programming language that runs blazingly fast, prevents segfaults, and guarantees thread safety. This package includes the Rust compiler and documentation generator...
acto-rs (>=0.2.9 <=0.3.7), alumina (>=0.1.0 <=0.1.1) +378 more potentially affected by CVE-2018-25023 via smallvec (>=0.1.8 <=0.5.1)
smallvec CARGO version =0.1.8, =0.2.9, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.2, =1.0.0, =1.1.0 - approveapi =0.1.0 and more Source cves: CVE-2018-25023 Source advisory: OSV:RUSTSEC-2018-0018...
OpenDataSH_twitter_notifier (>=0.1.0 <=0.1.2), aa2 (>=0.9.0 <=0.9.1) +436 more potentially affected by CVE-2018-20993 via yaml-rust (>=0.2.2 <=0.3.5)
yaml-rust CARGO version =0.2.2, =0.1.0, =0.9.0, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =0.3.2, =0.0.0, =0.1.0, =1.0.0, =0.0.2, =0.0.1, =0.0.2 and more Source cves: CVE-2018-20993 Source advisory: OSV:RUSTSEC-2018-0006...
BeerHolderBot (>=0.3.5 <=0.3.8), BiliupApi (>=0.1.0 <=0.1.7) +2448 more potentially affected by unknown CVE via serde_yaml (>=0.6.2 <=0.8.26)
serdeyaml CARGO version =0.6.2, =0.3.5, =0.1.0, =0.1.0, =0.0.9, =0.0.1, =0.0.7-alpha.3, =0.0.7-alpha.2, =0.1.1, =0.1.1, =0.3.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2018-0005...
Debian DSA-4295-1 : thunderbird - security update
Multiple security issues have been found in Thunderbird: Multiple memory safety errors and use-after-frees may lead to the execution of arbitrary code or denial of service. Debian follows the Thunderbird upstream releases. Support for the 52.x series has ended, so starting with this update we're...
[SECURITY] [DSA 4295-1] thunderbird security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4295-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 16, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4287-1] firefox-esr security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4287-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 07, 2018 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-4287-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-1000657
Rust Programming Language Rust standard library version Commit bfa0e1f58acf1c28d500c34ed258f09ae021893e and later; stable release 1.3.0 and later contains a Buffer Overflow vulnerability in std::collections::vecdeque::VecDeque::reserve function that can result in Arbitrary code execution, but no...
Use of uninitialized memory in temporary
Uninit memory is used as a RNG seed in temporary The following function is used as a way to get entropy from the system, which does operations on and exposes uninit memory, which is UB. rust fn randomseed: &Path, : &str - u64; 2 use std::mem::uninitialized as rand; unsafe rand:: ^ 0x12345678,...
CVE-2018-1000657
Rust Programming Language Rust standard library version Commit bfa0e1f58acf1c28d500c34ed258f09ae021893e and later; stable release 1.3.0 and later contains a Buffer Overflow vulnerability in std::collections::vecdeque::VecDeque::reserve function that can result in Arbitrary code execution, but no...