5 matches found
CVE-2021-28305
An issue was discovered in the diesel crate before 1.4.6 for Rust. There is a use-after-free in the SQLite backend because the semantics of sqlite3columnname are not followed...
artifact-app (>=0.5.0 <=0.9.2), cargo-registry (=0.1.0) +25 more potentially affected by CVE-2021-28305 via diesel (>=0.10.1 <=1.3.3)
diesel CARGO version =0.10.1, =0.5.0, =0.12.0, =0.8.0, =0.3.0, =0.8.0, =0.7.0, =0.99.0, =0.5.1, =0.11.0, =0.1.0, =0.99.0, =0.1.0, =0.99.0, =1.3.0 and more Source cves: CVE-2021-28305 Source advisory: OSV:GHSA-J8Q9-5RP9-4MV9...
CVE-2021-28305
An issue was discovered in the diesel crate before 1.4.6 for Rust. There is a use-after-free in the SQLite backend because the semantics of sqlite3columnname are not followed...
CVE-2021-28305
An issue was discovered in the diesel crate before 1.4.6 for Rust. There is a use-after-free in the SQLite backend because the semantics of sqlite3columnname are not followed...
CVE-2021-28305
CVE-2021-28305 affects the diesel crate prior to 1.4.6 for Rust. The SQLite backend has a use-after-free due to not following sqlite3_column_name semantics. This is documented across Red Hat, OSV/GHSA entries, but the exact patch version isn’t specified here; no exploit vectors are provided. Moni...