Lucene search
+L

489 matches found

RustSec
RustSec
added 2025/11/10 12:0 p.m.10 views

tandem_http_server is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

7AI score
Exploits0
RustSec
RustSec
added 2025/11/10 12:0 p.m.9 views

tandem_http_client is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

7AI score
Exploits0
OSV
OSV
added 2025/11/10 12:0 p.m.6 views

RUSTSEC-2025-0117 tandem is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

6.9AI score
Exploits0References3
RustSec
RustSec
added 2025/11/10 12:0 p.m.9 views

tandem_garble_interop is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

7AI score
Exploits0
RustSec
RustSec
added 2025/11/10 12:0 p.m.11 views

tandem is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

7AI score
Exploits0
OSV
OSV
added 2025/11/10 12:0 p.m.5 views

RUSTSEC-2025-0115 tandem_http_server is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/11/10 12:0 p.m.8 views

RUSTSEC-2025-0114 tandem_http_client is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/11/10 12:0 p.m.5 views

RUSTSEC-2025-0116 tandem_garble_interop is unmaintained

The tandem crates in https://github.com/sine-fdn are no longer maintained by the SINE Foundation. The repository has been archived. Recommended alternative We are continuing our work on SMPC by implementing our secure multi-party computation engine Polytune...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/10/22 9:47 p.m.14 views

GHSA-WWXP-HXH6-8GF8 binary_vec_io access memory out-of-bounds in binary_read_to_ref and binary_write_from_ref

Safe functions accept a single &T or &mut T but multiply by n to create slices extending beyond allocated memory when n 1. These functions use fromrawparts to create slices larger than the underlying allocation, violating memory safety. The binaryvecio repository is archived and unmaintained...

8.6CVSS5.9AI score
Exploits0References4
OSV
OSV
added 2025/10/22 5:8 p.m.5 views

GHSA-X77X-7MMH-CXV3 ncurses exposes uninitialized memory in string reading functions

Multiple string reading functions expose uninitialized memory by setting length to capacity when no null terminator is found. This allows reading uninitialized memory which may contain sensitive data from previous allocations. The ncurses-rs repository is archived and unmaintained...

6.9CVSS5.9AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/10/22 5:8 p.m.10 views

ncurses exposes uninitialized memory in string reading functions

Multiple string reading functions expose uninitialized memory by setting length to capacity when no null terminator is found. This allows reading uninitialized memory which may contain sensitive data from previous allocations. The ncurses-rs repository is archived and unmaintained...

6.9AI score
Exploits0References3Affected Software1
OSV
OSV
added 2025/10/22 4:34 p.m.6 views

DRUPAL-CONTRIB-2025-112

CivicTheme is a design system and theme framework used to build content-rich Drupal websites. It includes editorial workflows, structured content types, and flexible theming components. The theme doesn't sufficiently check access to entities when they are displayed as reference cards used in manu...

7.5CVSS6AI score0.0028EPSS
Exploits0References1
Drupal
Drupal
added 2025/10/22 12:0 a.m.15 views

CivicTheme Design System - Moderately critical - Information disclosure - SA-CONTRIB-2025-112

CivicTheme is a design system and theme framework used to build content-rich Drupal websites. It includes editorial workflows, structured content types, and flexible theming components. The theme doesn't sufficiently check access to entities when they are displayed as reference cards used in manu...

7.5CVSS5.5AI score0.0028EPSS
Exploits0References2
OSV
OSV
added 2025/10/21 12:0 p.m.3 views

RUSTSEC-2025-0109 Out-of-bounds memory access in binary_read_to_ref and binary_write_from_ref

Safe functions accept a single &T or &mut T but multiply by n to create slices extending beyond allocated memory when n 1. These functions use fromrawparts to create slices larger than the underlying allocation, violating memory safety. The binaryvecio repository is archived and unmaintained...

6.9AI score
Exploits0References3
RustSec
RustSec
added 2025/10/21 12:0 p.m.9 views

Uninitialized memory exposure in string reading functions

Multiple string reading functions expose uninitialized memory by setting length to capacity when no null terminator is found. This allows reading uninitialized memory which may contain sensitive data from previous allocations. The ncurses-rs repository is archived and unmaintained...

6.9AI score
Exploits0
RustSec
RustSec
added 2025/10/21 12:0 p.m.20 views

`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling

The archive reader incorrectly handles PAX extended headers, when the ustar header incorrectly specifies zero size size=000000000000, while a PAX header specifies a non-zero size, tokio-tar::Archive is going to read the file content as tar entry header. This can be used by a tar file to present...

8.1CVSS6.8AI score0.00677EPSS
Exploits1Affected Software1
OSV
OSV
added 2025/10/21 12:0 p.m.7 views

RUSTSEC-2025-0111 `tokio-tar` parses PAX extended headers incorrectly, allows file smuggling

The archive reader incorrectly handles PAX extended headers, when the ustar header incorrectly specifies zero size size=000000000000, while a PAX header specifies a non-zero size, tokio-tar::Archive is going to read the file content as tar entry header. This can be used by a tar file to present...

8.1CVSS6.8AI score0.00677EPSS
Exploits1References3
OSV
OSV
added 2025/10/21 12:0 p.m.6 views

RUSTSEC-2025-0108 Uninitialized memory exposure in string reading functions

Multiple string reading functions expose uninitialized memory by setting length to capacity when no null terminator is found. This allows reading uninitialized memory which may contain sensitive data from previous allocations. The ncurses-rs repository is archived and unmaintained...

6.9AI score
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-13038

Malware in sbrugna...

7.5CVSS7.4AI score0.0205EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-7429

Malware in sbrugna...

6.5CVSS6.6AI score0.00783EPSS
Exploits1References2
Rows per page
Query Builder