9 matches found
PT-2026-45033
Impact A Remote Code Execution RCE vulnerability was discovered in Ouroboros. If a user clones a malicious repository and runs Ouroboros commands within that directory, it can lead to arbitrary code execution and potential system takeover. The vulnerability CWE-426: Untrusted Search Path & CWE-15...
The New Ouroboros Technique and How It Fits in dMSA’s Security Model
...
GHSA-87MF-9WG6-PPF8 Ouroboros is Unsound
In 0.15.0 and prior, Ouroboros works internally by creating a struct where all uses of 'this are replaced by 'static. However, a recent addition to Miri checks that references passed to functions are valid during the entire execution of the function, even when those references are passed inside a...
Ouroboros is Unsound
In 0.15.0 and prior, Ouroboros works internally by creating a struct where all uses of 'this are replaced by 'static. However, a recent addition to Miri checks that references passed to functions are valid during the entire execution of the function, even when those references are passed inside a...
abel (>=0.1.0 <=0.1.1), abel-core (>=0.1.0 <=0.1.1) +309 more potentially affected by unknown CVE via ouroboros (>=0.10.1 <=0.15.6)
ouroboros CARGO version =0.10.1, =0.1.0, =0.1.0, =0.4.0, =0.4.0, =0.4.0, =0.1.0, =1.1.0, =0.6.0, =0.1.0, =0.1.1, =0.3.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-87MF-9WG6-PPF8...
abel (>=0.1.0 <=0.1.1), abel-core (>=0.1.0 <=0.1.1) +309 more potentially affected by unknown CVE via ouroboros (>=0.10.1 <=0.15.6)
ouroboros CARGO version =0.10.1, =0.1.0, =0.1.0, =0.4.0, =0.4.0, =0.4.0, =0.1.0, =1.1.0, =0.6.0, =0.1.0, =0.1.1, =0.3.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0042...
RUSTSEC-2023-0042 Ouroboros is Unsound
Summary Ouroboros has a soundness problem, but a fix has been implemented in 0.16.0. More details: In 0.15.0, Ouroboros works internally by creating a struct where all uses of 'this are replaced by 'static. However, a recent addition to Miri checks that references passed to functions are valid...
RUSTSEC-2021-0134 rental is unmaintained, author has moved on
The author encourages users to explore other solutions, or maintain a fork. Maintained alternatives include: ouroboros fortify escher...
rental is unmaintained, author has moved on
The author encourages users to explore other solutions, or maintain a fork. Maintained alternatives include: ouroboros fortify escher...