CVE-2020-27637

The R programming language’s default package manager CRAN is affected by a path traversal vulnerability that can lead to server compromise. This vulnerability affects packages installed via the R CMD install cli command or the install.packages function from the interpreter. Update to version 4.0....

CVE-2020-27637

The R programming language’s default package manager CRAN is affected by a path traversal vulnerability that can lead to server compromise. This vulnerability affects packages installed via the R CMD install cli command or the install.packages function from the interpreter. Update to version 4.0....

Rust Resource Management Error Vulnerability (CNVD-2021-39556)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A resource management error vulnerability exists in Rust pyo3 crate versions prior to 0.12.4, which stems from a reference counting error and post-release usage in From . No details of the vulnerability are...

Unspecified Vulnerability in Rust (CNVD-2021-37534)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in thex crate for Rust versions 2020-12-08 and earlier, which stems from thex allowing cross-thread data contention for non-sending types. No details of the vulnerability are...

Mozilla Rust ozone crate buffer overflow vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in ozone crate in versions of Mozilla Rust prior to 2020-07-04, which stems from an out-of-bounds access that violates memory safety. No details of the vulnerability are...

Unspecified Vulnerability in Rust (CNVD-2021-37535)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in versions prior to Rust magnetic crate 2.0.1 that stems from MPMCConsumer and MPMCProducer allowing cross-threaded sends of non-sending types. No details of the vulnerability ar...

Rust buffer overflow vulnerability (CNVD-2021-37536)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in try-mutex crate for Rust versions prior to 0.3.0, which stems from TryMutex allowing cross-threaded sends of non-sending types. No details of the vulnerability are...

Unspecified Vulnerability in Rust (CNVD-2021-39165)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in socket2 crate for Rust prior to version 0.3.16, which stems from its incorrect expectation of the std::net::SocketAddr memory representation. No details of the vulnerability ar...

Unspecified Vulnerability in Rust (CNVD-2021-39557)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust futures-intrusive crate versions prior to 0.4.0 that stems from GenericMutexGuard allowing unsynchronized types of cross-thread data contention. No details of the...

Rust Competitive Conditioning Problem Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A Competition Condition Issue vulnerability exists in Rust concread crate versions prior to 0.2.6, which can be exploited by an attacker to cause data contention in ARCache by sending a type that does not...

Rust buffer overflow vulnerability (CNVD-2021-37531)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer overflow vulnerability exists in Rust serdecbor crate versions prior to 0.10.2, which stems from the fact that the CBOR deserializer may cause stack consumption via nested semantic tags. No detailed...

CVE-2020-28852

In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. x/text/language is supposed to be able to parse an HTTP Accept-Language header...

Rust Security Vulnerabilities

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. arr crate through 2020-08-25 for Rust A security vulnerability exists that stems from uninitialized memory being deleted from the template by Array::new...

[SECURITY] Fedora 32 Update: golang-1.14.13-1.fc32

The Go Programming Language...

golang: data race in certain net/http servers including ReverseProxy can lead to DoS

A flaw was found Go's net/http package. Servers using ReverseProxy from net/http in the Go standard library are vulnerable to a data race that results in a denial of service. The highest threat from this vulnerability is to system availability...

[SECURITY] Fedora 33 Update: golang-1.15.5-1.fc33

The Go Programming Language...

CVE-2020-28362

Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service...

The vulnerability of the PHP programming language interpreter, related to integer overflow in buffers, allows attackers to trigger a service failure.

The vulnerability of the PHP programming language interpreter is related to integer overflow in buffers. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Moderate: Red Hat Security Advisory: python38:3.8 security, bug fix, and enhancement update

An update for the python38:3.8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

go-toolset:rhel8 bug fix and enhancement update

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...