CuPs (>=0.0.0 <=0.0.5), IF (=0.0.0) +18 more potentially affected by unknown CVE via unic-ucd-name_aliases (=0.9.0)

unic-ucd-namealiases CARGO version =0.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on unic-ucd-namealiases and may be impacted: - CuPs =0.0.0, =1.11.3, =0.3.0, =0.3.0, =0.0.102, =0.0.7, =0.0.1, =1.0.0, =0.0.0, =0.1.0, =1.1.1, =2.0.0 - unic =0.9.0 a...

CuPs (>=0.0.0 <=0.0.5), IF (=0.0.0) +22 more potentially affected by unknown CVE via unic-ucd-age (>=0.5.0 <=0.9.0)

unic-ucd-age CARGO version =0.5.0, =0.0.0, =1.11.3, =0.3.0, =0.3.0, =0.0.102, =0.0.7, =0.0.1, =1.0.0, =0.1.0, =0.0.0, =0.3.0, =0.3.0, =0.4.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0102...

aocleaderboard (>=0.1.0 <=0.6.1), archetect (>=0.5.0 <=0.7.3) +93 more potentially affected by unknown CVE via unic-segment (>=0.7.0 <=0.9.0)

unic-segment CARGO version =0.7.0, =0.1.0, =0.5.0, =0.5.0, =1.0.0, =0.1.0, =0.0.4, =0.1.0, =0.2.6, =0.0.15, =0.1.0, =0.1.3, =0.2.1, =0.1.2-beta, =0.1.8 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0074...

Druid_task1 (=0.1.0), audio-processor-analysis (>=0.1.0-alpha.4 <=2.4.0) +72 more potentially affected by unknown CVE via unic-bidi (>=0.1.0 <=0.9.0)

unic-bidi CARGO version =0.1.0, =0.1.0-alpha.4, =0.4.0, =0.7.0, =0.4.0, =0.7.0, =0.2.0, =0.2.3 - frui =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0096...

CuPs (>=0.0.0 <=0.0.5), IF (=0.0.0) +29 more potentially affected by unknown CVE via unic-ucd-hangul (>=0.8.0 <=0.9.0)

unic-ucd-hangul CARGO version =0.8.0, =0.0.0, =1.11.3, =0.3.0, =0.3.0, =0.2.4-beta, =0.0.102, =0.0.7, =0.0.1, =1.0.0, =0.0.0, =0.0.111 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0079...

CuPs (>=0.0.0 <=0.0.5), Druid_task1 (=0.1.0) +317 more potentially affected by unknown CVE via unic-ucd-version (>=0.7.0 <=0.9.0)

unic-ucd-version CARGO version =0.7.0, =0.0.0, =1.11.3, =0.1.2, =0.1.0, =0.3.0, =0.1.0, =0.5.0, =0.5.0, =0.1.0-alpha.4, =2.4.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0098...

box-bin (=0.3.1), box-format (>=0.3.0 <=0.3.3) +11 more potentially affected by unknown CVE via unic-normal (>=0.1.2 <=0.9.0)

unic-normal CARGO version =0.1.2, =0.3.0, =0.2.4-beta, =0.1.0, =0.3.0, =0.3.0, =0.1.0, =0.3.0, =0.5.0, =0.7.0, =0.1.1, =0.9.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0082...

RUSTSEC-2025-0091 `unic-utils` is unmaintained

All Unicode crates that are part of https://github.com/open-i18n/rust-unic are unmaintained...

SLED15 / SLES15 Security Update : gstreamer-plugins-rs (SUSE-SU-2025:03459-1)

The remote openSUSE host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:03459-1 advisory. - Update crate shlex to 1.3.0: RUSTSEC-2024-0006: Fixed multiple issues involving quote API bsc1230028 Tenable has extracted the preceding description block...

Fedora: Security Advisory (FEDORA-2025-7ec84ba6e9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-1be5992b52)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 41 : python-nh3 / rust-ammonia (2025-1be5992b52)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-1be5992b52 advisory. Update the ammonia crate to version 3.3.1 and rebuild python-nh3 to apply fixes for RUSTSEC-2025-0071. Tenable has extracted the preceding description block...

Fedora 42 : python-nh3 / rust-ammonia (2025-7ec84ba6e9)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-7ec84ba6e9 advisory. Update the ammonia crate to version 4.0.1 and rebuild python-nh3 to apply fixes for RUSTSEC-2025-0071. Tenable has extracted the preceding description block...

Fedora 43 : python-nh3 / rust-ammonia (2025-074aba6ad4)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-074aba6ad4 advisory. Update the ammonia crate to version 4.1.2 and rebuild python-nh3 to apply fixes for RUSTSEC-2025-0071. Tenable has extracted the preceding description block...

better-config-loader (>=0.1.4 <=0.2.4), brainwires-skills (>=0.2.0 <=0.6.0) +62 more potentially affected by unknown CVE via libyml (>=0.0.1 <=0.0.5)

libyml CARGO version =0.0.1, =0.1.4, =0.2.0, =0.33.0, =0.14.0, =0.14.0, =0.3.0, =0.1.5, =0.9.0, =0.3.0, =0.8.0, =0.3.2, =0.1.0, =0.6.1 - fastconfig =1.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0067...

GuiNistRs (=0.1.0), LemoGUI (=0.0.1-nightly) +413 more potentially affected by unknown CVE via servo-fontconfig (>=0.4.0 <=0.5.1)

servo-fontconfig CARGO version =0.4.0, =0.5.0, =0.2.0, =0.5.0, =0.9.0, =0.1.0, =0.1.0, =0.8.0, =0.4.0, =0.9.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0059...

RagatagSorter (>=3.2.0 <=3.2.1), aa2nucaln (=0.1.1) +418 more potentially affected by unknown CVE via custom_derive (=0.1.7)

customderive CARGO version =0.1.7 is affected by a known vulnerability. The following packages have a transitive dependency on customderive and may be impacted: - RagatagSorter =3.2.0, =0.9.0, =0.4.0, =0.1.1, =0.2.0, =0.4.3, =0.1.0, =0.1.0, =0.1.0-alpha.1, =0.1.0, =3.1.3, =3.10.0 and more Source...

advisory-db

This is a security advisory database repository for Rust crates published via crates.io. The repository contains a collection of security advisories filed against various Rust crates, with each advisory containing information in TOML format. The advisories are categorized by crate name, and each...

advisory-db

This is a security advisory database for Rust crates published through crates.io. The database is maintained by the RustSec project and contains information on security vulnerabilities in various Rust crates. The database is stored in TOML format and can be consumed by various tools for auditing...

Security update for rav1e

This update for rav1e fixes the following issues: Update crate shlex to 1.3.0: CVE-2024-58266: Fixed command injection bsc1247207 RUSTSEC-2024-0006: Fixed multiple issues involving quote API bsc1230028 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...