4 matches found
KeyBoxen (=0.1.0), accesskit_atspi_common (>=0.1.1 <=0.9.1) +313 more potentially affected by unknown CVE via enumflags2 (=0.7.12)
enumflags2 CARGO version =0.7.12 is affected by a known vulnerability. The following packages have a transitive dependency on enumflags2 and may be impacted: - KeyBoxen =0.1.0 - accesskitatspicommon =0.1.1, =0.1.0, =0.1.0, =0.6.0, =5.4.0, =0.4.0, =0.8.12, =0.2.0, =0.1.0, =0.2.0 and more Source...
GHSA-QVC4-78GW-PV8P Adverserial use of `make_bitflags!` macro can cause undefined behavior
The macro relied on an expression of the form Enum::Variant always being a variant of the enum. However, it may also be an associated integer constant, in which case there's no guarantee that the value of said constant consists only of bits valid for this bitflag type. Thus, code like this could...
KeyBoxen (=0.1.0), accesskit_atspi_common (>=0.1.1 <=0.9.1) +313 more potentially affected by unknown CVE via enumflags2 (=0.7.12)
enumflags2 CARGO version =0.7.12 is affected by a known vulnerability. The following packages have a transitive dependency on enumflags2 and may be impacted: - KeyBoxen =0.1.0 - accesskitatspicommon =0.1.1, =0.1.0, =0.1.0, =0.6.0, =5.4.0, =0.4.0, =0.8.12, =0.2.0, =0.1.0, =0.2.0 and more Source...
RUSTSEC-2023-0035 Adverserial use of `make_bitflags!` macro can cause undefined behavior
The macro relied on an expression of the form Enum::Variant always being a variant of the enum. However, it may also be an associated integer constant, in which case there's no guarantee that the value of said constant consists only of bits valid for this bitflag type. Thus, code like this could...