[SECURITY] Fedora 39 Update: rust-gitui-0.24.3-4.fc39

Blazing fast terminal-ui for git...

[SECURITY] Fedora 38 Update: virtiofsd-1.10.1-1.fc38

Virtio-fs vhost-user device daemon Rust version...

[SECURITY] Fedora 38 Update: rust-vhost-user-backend-0.13.1-2.fc38

A framework to build vhost-user backend service daemon...

[SECURITY] Fedora 38 Update: rust-userfaultfd-0.8.1-2.fc38

Rust bindings for the Linux userfaultfd functionality...

[SECURITY] Fedora 38 Update: rust-vhost-0.10.0-2.fc38

A pure rust library for vdpa, vhost and vhost-user...

[SECURITY] Fedora 38 Update: rust-kvm-bindings-0.7.0-1.fc38

Rust FFI bindings to KVM generated using bindgen...

Fedora: Security Advisory for virtiofsd (FEDORA-2024-f2305d485f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for rust-kvm-bindings (FEDORA-2024-f2305d485f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Albabat Ransomware Infiltrates via Counter-Strike Cheat Utility

Summary: Albabat ransomware, made its debut in November 2023, emerging as a financially motivated threat crafted in Rust. This ransomware has targeted both corporate entities and individual consumers across diverse geographical regions. Threat Level - Red | Attack Report For a detailed threat...

[SECURITY] Fedora 39 Update: virtiofsd-1.10.1-1.fc39

Virtio-fs vhost-user device daemon Rust version...

[SECURITY] Fedora 39 Update: rust-virtio-queue-0.11.0-1.fc39

Virtio queue implementation...

[SECURITY] Fedora 39 Update: rust-event-manager-0.4.0-2.fc39

Abstractions for implementing event based systems...

[SECURITY] Fedora 39 Update: rust-userfaultfd-0.8.1-2.fc39

Rust bindings for the Linux userfaultfd functionality...

[SECURITY] Fedora 39 Update: rust-kvm-bindings-0.7.0-1.fc39

Rust FFI bindings to KVM generated using bindgen...

Fedora: Security Advisory for virtiofsd (FEDORA-2024-04877592b7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the HTTP library for Rust Hyper, related to unlimited resource distribution, allows attackers to cause service failures.

The vulnerability of the HTTP library for Rust Hyper relates to the unlimited distribution of resources. Exploiting this vulnerability could allow a remote attacker to cause service failures...

Albabat, Kasseika, Kuiper: New Ransomware Gangs Rise with Rust and Golang

Cybersecurity researchers have detected in the wild yet another variant of the Phobos ransomware family known as Faust. Fortinet FortiGuard Labs, which detailed the latest iteration of the ransomware, said it's being propagated by means of an infection that delivers a Microsoft Excel document .XL...

oniguruma: Use-after-free in onig_new_deluxe() in regext.c

A use-after-free in onignewdeluxe in regext.c in Oniguruma 6.9.2 allows attackers to potentially cause information disclosure, denial of service, or possibly code execution by providing a crafted regular expression. The attacker provides a pair of a regex pattern and a string, with a multi-byte...

CVE-2024-23644 trillium-http and trillium-client vulnerable to HTTP Request/Response Splitting

Trillium is a composable toolkit for building internet applications with async rust. In trillium-http prior to 0.3.12 and trillium-client prior to 0.5.4, insufficient validation of outbound header values may lead to request splitting or response splitting attacks in scenarios where attackers have...

Amazon Linux 2023 : cargo, clippy, rust (ALAS2023-2024-497)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-497 advisory. Cargo downloads a Rust project's dependencies and compiles the project. Starting in Rust 1.60.0 and prior to 1.72, Cargo did not escape Cargo feature names when including them in the report generated by...