CVE-2021-45681

CVE-2021-45681 affects the Rust crate derive-com-impl prior to 0.1.2. The issue is an invalid reference leading to memory corruption because AddRef may not be called before returning a pointer. Multiple sources (OSV/RUSTSEC/RUST) detail the same root cause and note the fix was committed (9803f31f...

@0xwen/core (>=0.0.1 <=0.0.3), @0xwen/core-v5 (>=0.0.1 <=0.0.3) +128 more potentially affected by CVE-2021-46320 +1 more via @openzeppelin/contracts-upgradeable (>=3.4.0 <=4.3.3)

@openzeppelin/contracts-upgradeable NPM version =3.4.0, =0.0.1, =0.0.1, =0.0.2, =0.0.1, =2.0.0, =3.0.0-alpha0, =2.0.0, =3.0.1-alpha, =1.0.0, =1.0.0-beta.0, =1.0.0, =1.0.4 and more Source cves: CVE-2021-46320, CVE-2022-39384 Source advisory: OSV:GHSA-9C22-PWXW-P6HX...

Double-free in id-map

A double free can occur in removeset upon a panic in a Drop impl. When removing a set of elements, ptr::dropinplace is called on each of the element to be removed. If the Drop impl of one of these elements panics then the previously dropped elements can be dropped again...

GHSA-RCCQ-J2M7-8FWR Double-free in id-map

A double free can occur in removeset upon a panic in a Drop impl. When removing a set of elements, ptr::dropinplace is called on each of the element to be removed. If the Drop impl of one of these elements panics then the previously dropped elements can be dropped again...

GHSA-VPW8-43WM-RXW5 Double free in endian_trait

An issue was discovered in the endiantrait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics...

Data race in va-ts

In the affected versions of this crate, Demuxer unconditionally implemented Send with no trait bounds on T. This allows sending a non-Send type T across thread boundaries, which can cause undefined behavior like unlocking a mutex from a thread that didn't lock the mutex, or memory corruption from...

Moderate: Red Hat Security Advisory: Red Hat Fuse 7.9.0 release and security update

A minor version update from 7.8 to 7.9 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring...

CVE-2021-29929

An issue was discovered in the endiantrait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics...

Double free

An issue was discovered in the endiantrait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics...

CVE-2021-29929

An issue was discovered in the endiantrait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics...

Rust 资源管理错误漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in endiantrait crate for Rust 2021-01-04 and earlier versions, which stems from an error that can occur when a user-supplied endian impl occurs panic. No detailed...

Insecure Anti-CSRF Tokens

myfaces-impl uses an insecure cryptographic random for anti-CSRF tokens. The usage of the insecure tokens would allow an attacker to predict subsequent anti-CSRF token values and successfully perform requests on behalf of the users...

audir (=0.1.0), com-impl (>=0.1.0 <=0.1.1) +6 more potentially affected by CVE-2021-45681 via derive-com-impl (=0.1.1)

derive-com-impl CARGO version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on derive-com-impl and may be impacted: - audir =0.1.0 - com-impl =0.1.0, =0.3.0-alpha1, =0.3.0-alpha1, =0.3.0-alpha4 - dxgi =0.3.0-alpha4 - wic =0.3.0-alpha1 Source cves...

panic in user-provided `Endian` impl triggers double drop of T

Affected versions of the crate does not guard against panic from user-provided impl of Endian trait, which is a safe trait that users can implement. If a user-provided implementation of the Endian trait panics, double-drop is triggered due to the duplicated ownership of T created by ptr::read...

Authorization Bypass

portal-impl is vulnerable to authorization bypass. The property portlet.resource.id.banned.paths.regexp can be bypassed with doubled encoded URLs...

ca.uhnresearch.pughlab:java-server (>=1.0.3 <=1.0.5), com.almende.eve:eve-tests (>=3.0.0 <=3.1.0) +53 more potentially affected by CVE-2015-0254 via org.apache.taglibs:taglibs-standard-impl (=1.2.1)

org.apache.taglibs:taglibs-standard-impl MAVEN version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.taglibs:taglibs-standard-impl and may be impacted: - ca.uhnresearch.pughlab:java-server =1.0.3, =3.0.0, =3.0.0, =3.0.0, =2.1.1,...

`pnet_packet` buffer overrun in `set_payload` setters

As indicated by this issue, a buffer overrun is possible in the setpayload setter of the various mutable "Packet" struct setters. The offending setpayload functions were defined within the struct impl blocks in earlier versions of the package, and later by the packet macro. Fixed in the packet...

Remote Code Execution

portal-impl is vulnerable to remote code execution. The template API does not properly restrict user access to template objects, allowing an attacker to execute arbitrary code on the system using malicious FreeMarker and Velocity templates...

Unauthorized User Deletion

portal-impl is vulnerable to unauthorized user deletion. It is possible for any unregistered or registered user to delete other user from the portal if he or she is aware of the email address of the target user and manage to construct a URL for it...

Information Disclosure

portal-impl is vulnerable to information disclosure. The vulnerability exists as the DDMTemplateResourceParser does not properly check if a template resource is valid...