Lucene search
K

9546 matches found

OSV
OSV
added 2018/07/23 10:27 p.m.7 views

MGASA-2018-0318 Updated rust packages fix security vulnerability

The Rust Programming Language rustdoc version before version 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS7.8AI score0.01819EPSS
Exploits0References4
Mageia
Mageia
added 2018/07/23 10:27 p.m.34 views

Updated rust packages fix security vulnerability

The Rust Programming Language rustdoc version before version 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS3.1AI score0.01819EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/07/21 12:0 a.m.25 views

Fedora Update for rust FEDORA-2018-f38d1cb219

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.01819EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/07/21 12:0 a.m.21 views

Fedora Update for rust FEDORA-2018-499d74c768

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.01819EPSS
Exploits0References2
Fedora
Fedora
added 2018/07/20 5:46 p.m.32 views

[SECURITY] Fedora 28 Update: rust-1.27.1-2.fc28

Rust is a systems programming language that runs blazingly fast, prevents segfaults, and guarantees thread safety. This package includes the Rust compiler and documentation generator...

7.8CVSS2.5AI score0.01819EPSS
Exploits0
Fedora
Fedora
added 2018/07/20 4:59 p.m.32 views

[SECURITY] Fedora 27 Update: rust-1.27.1-2.fc27

Rust is a systems programming language that runs blazingly fast, prevents segfaults, and guarantees thread safety. This package includes the Rust compiler and documentation generator...

7.8CVSS2.5AI score0.01819EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2018/07/19 12:0 p.m.6 views

Boa (>=0.9.0 <=0.10.0), GetPDB (>=0.1.0 <=1.0.1) +5077 more potentially affected by CVE-2018-20991 via smallvec (>=0.6.13 <=0.6.14)

smallvec CARGO version =0.6.13, =0.9.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.2.0, =0.5.3, =0.1.0, =0.5.0, =0.5.0, =0.5.2 and more Source cves: CVE-2018-20991 Source advisory: OSV:RUSTSEC-2018-0003...

9.8CVSS7.2AI score0.01798EPSS
Exploits0
NVD
NVD
added 2018/07/09 8:29 p.m.23 views

CVE-2018-1000622

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS7.9AI score0.01819EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2018/07/09 8:29 p.m.32 views

CVE-2018-1000622

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS7.2AI score0.01819EPSS
Exploits0References2
Prion
Prion
added 2018/07/09 8:29 p.m.24 views

Path traversal

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

6.8CVSS7.8AI score0.01819EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2018/07/09 8:29 p.m.20 views

CVE-2018-1000622

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS7AI score
Exploits0References5
Cvelist
Cvelist
added 2018/07/09 8:0 p.m.58 views

CVE-2018-1000622

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8AI score0.01819EPSS
Exploits0References5
CVE
CVE
added 2018/07/09 8:0 p.m.170 views

CVE-2018-1000622

CVE-2018-1000622 affects Rust rustdoc: loading plugins from world-writable directories could enable local code execution. AFFECTED: rustdoc versions 0.8 through 1.27.0; exploitation via the --plugin flag without the --plugin-path flag. REMEDY: upgrade to a fixed release (1.27.1 per initial descri...

7.8CVSS7.7AI score0.01819EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2018/07/09 8:0 p.m.24 views

CVE-2018-1000622

The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the...

7.8CVSS8AI score0.01819EPSS
Exploits0
seebug.org
seebug.org
added 2018/07/09 12:0 a.m.86 views

EPoD: Ethereum Packet of Death (CVE-2018-12018)

PeckShield has so far discovered quite a few critical smart contract vulnerabilities. Besides smart contracts, the Ethereum ecosystem also includes other various components that are equally exposed to possible exploitation. Obviously, one such component is the core of Ethereum, i.e., the underlyi...

0.2AI score0.04255EPSS
Exploits2
OSV
OSV
added 2018/06/30 12:0 p.m.14 views

RUSTSEC-2018-0016 quickersort is deprecated and unmaintained

The author of the quickersort crate has deprecated it and does not recommend using it anymore. Everything in it has been incorporated into std::sortunstable in the standard library as of Rust 1.20. std::sortunstable: https://doc.rust-lang.org/stable/std/primitive.slice.htmlmethod.sortunstable...

7.2AI score
Exploits0References3
RustSec
RustSec
added 2018/06/30 12:0 p.m.14 views

quickersort is deprecated and unmaintained

The author of the quickersort crate has deprecated it and does not recommend using it anymore. Everything in it has been incorporated into std::sortunstable in the standard library as of Rust 1.20. std::sortunstable: https://doc.rust-lang.org/stable/std/primitive.slice.htmlmethod.sortunstable...

4.3AI score
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2018/06/29 12:0 p.m.3 views

async_docker (>=0.1.0 <=0.1.1), cargo (>=0.4.0 <=0.8.0) +11 more potentially affected by CVE-2018-20990 via tar (>=0.2.14 <=0.3.4)

tar CARGO version =0.2.14, =0.1.0, =0.4.0, =0.3.1, =0.1.0, =0.3.0, =0.2.0, =0.2.0, =0.2.1, =0.0.1, =0.0.9 - wormhole =0.1.0 Source cves: CVE-2018-20990 Source advisory: OSV:RUSTSEC-2018-0002...

7.5CVSS7AI score0.01676EPSS
Exploits0
n0where
n0where
added 2018/03/18 3:19 p.m.39 views

Next Generation Graphical Network Analyzer: Deplug

Deplug is a graphical network analyzer powered by web technologies. Features Cross-Platform macOS, Linux, Windows Web-based UI Built-in Package Manager SDK for JavaScript and Rust Concurrency Support Import / Export Deplug supports following formats by default. Pcap File .pcap Preferences...

7.2AI score
Exploits0References1
Filippo.io
Filippo.io
added 2018/02/07 10:57 p.m.19 views

Easy Windows and Linux cross-compilers for macOS

tl;dr: you can install cross-compiler toolchains to compile C/C++ for Windows or Linux from macOS with these two Homebrew Formulas. brew install FiloSottile/musl-cross/musl-cross brew install mingw-w64 Cross-compiling C and C++ is dreadful. While in Go you just need to set an environment variable...

7AI score
Exploits0
Rows per page
Query Builder