cggmp21 数据伪造问题漏洞

cggmp21 is a Rust library open-sourced by Lockness. A data forgery issue vulnerability exists in versions prior to cggmp21 0.6.3, which stems from a missing check in the ZK proof that could lead to a malicious signer reconstructing the full private key...

cggmp21 安全漏洞

cggmp21 is a Rust library open-sourced by Lockness. A security vulnerability exists in cggmp21 versions 0.6.3 and earlier and 0.7.0-alpha.1, which stems from improper use of pre-signatures in a manner that may result in reduced security...

[SECURITY] Fedora 42 Update: rust-reqsign-file-read-tokio-2.0.1-1.fc42

Tokio-based file reader implementation for reqsign...

[SECURITY] Fedora 42 Update: rust-reqsign-aws-v4-2.0.1-1.fc42

AWS SigV4 signing implementation for reqsign...

[SECURITY] Fedora 43 Update: rust-reqsign-aws-v4-2.0.0-1.fc43

AWS SigV4 signing implementation for reqsign...

[SECURITY] Fedora 41 Update: rust-manyhow-0.11.4-1.fc41

Proc macro error handling =C3=A0 la anyhow x proc-macro-error...

RUSTSEC-2025-0131 Lack of sufficient checks in public API

The affected function is unsound due to insufficient checks on public struct field...

ffmpeg 安全漏洞

ffmpeg is a rust library by meh.individual developer. A security vulnerability exists in ffmpeg, which stems from the Firequalizer Filter may be forced to dereference null pointers, potentially resulting in a denial of service...

astral-tokio-tar 安全漏洞

astral-tokio-tar is a Rust library open-sourced by Astral. A security vulnerability exists in astral-tokio-tar versions prior to 0.5.6, which stems from inconsistent boundary parsing and could result in the contents of an interpreted file being a legal tar header...

CuPs (>=0.0.0 <=0.0.5), IF (=0.0.0) +81 more potentially affected by unknown CVE via unic-ucd-ident (>=0.7.0 <=0.9.0)

unic-ucd-ident CARGO version =0.7.0, =0.0.0, =1.11.3, =0.1.0, =0.3.0, =0.3.0, =0.1.0, =0.1.0, =0.2.7, =1.14.0, =0.25.0, =0.55.0, =0.15.0, =0.34.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0100...

CuPs (>=0.0.0 <=0.0.5), Druid_task1 (=0.1.0) +316 more potentially affected by unknown CVE via unic-common (>=0.7.0 <=0.9.0)

unic-common CARGO version =0.7.0, =0.0.0, =1.11.3, =0.1.2, =0.1.0, =0.3.0, =0.1.0, =0.5.0, =0.5.0, =0.1.0-alpha.4, =2.4.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0080...

CuPs (>=0.0.0 <=0.0.5), Druid_task1 (=0.1.0) +315 more potentially affected by unknown CVE via unic-ucd-version (>=0.7.0 <=0.9.0)

unic-ucd-version CARGO version =0.7.0, =0.0.0, =1.11.3, =0.1.2, =0.1.0, =0.3.0, =0.1.0, =0.5.0, =0.5.0, =0.1.0-alpha.4, =2.4.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0098...

Alloy 安全漏洞

Alloy is a library in Rust open sourced by Alloy. A security vulnerability exists in Alloy versions prior to 0.8.26 and prior to 1.4.1, which stems from the mishandling of malformed input by alloydynabi::TypedData, which could lead to a denial-of-service attack...

[SECURITY] Fedora 41 Update: rust-prometheus_exporter-0.8.5-5.fc41

Helper libary to export prometheus metrics using tiny-http...

EUVD-2021-1723

Malware in sbrugna...

EUVD-2019-4737

Malware in sbrugna...

EUVD-2020-23859

Malware in sbrugna...

EUVD-2021-2271

Malware in sbrugna...

EUVD-2020-23860

Malware in sbrugna...

EUVD-2021-1523

Malware in sbrugna...