EUVD-2021-1520

Malware in sbrugna...

EUVD-2021-1922

Malware in sbrugna...

CVE-2019-25002

An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

CVE-2017-1000168

sodiumoxide 0.0.13 and older scalarmult vulnerable to degenerate public keys...

sodiumoxide is deprecated

Alternatives may be found - not in any specific order: - libsodium-sys-stable - dryoc - RustCrypto/nacl-compat cryptobox, cryptokx, cryptosecretstream - RustCrypto/xsalsa20poly1305 cryptosecretbox - Signatory - ed25519-compact - ed25519-dalek - ring Recommendations can be also found from: - Aweso...

RUSTSEC-2021-0137 sodiumoxide is deprecated

Alternatives may be found - not in any specific order: - libsodium-sys-stable - dryoc - RustCrypto/nacl-compat cryptobox, cryptokx, cryptosecretstream - RustCrypto/xsalsa20poly1305 cryptosecretbox - Signatory - ed25519-compact - ed25519-dalek - ring Recommendations can be also found from: - Aweso...

VibeProtocol (=0.1.0), acid-store (>=0.1.0 <=0.14.2) +199 more potentially affected by unknown CVE via sodiumoxide (>=0.0.10 <=0.2.7)

sodiumoxide CARGO version =0.0.10, =0.1.0, =0.1.1, =0.1.0, =0.6.2, =0.6.2, =0.6.1, =0.6.2, =0.15.2, =0.1.0, =0.2.1 - branca =0.2.0 - brchd =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0137...

b2b (=0.1.0), discord (>=0.7.0 <=0.8.1) +12 more potentially affected by CVE-2017-1000168 via sodiumoxide (>=0.0.10 <=0.0.13)

sodiumoxide CARGO version =0.0.10, =0.7.0, =9.0.0, =1.0.5, =1.0.0, =0.1.0, =0.0.1, =0.0.1, =0.5.1, =0.1.0, =0.0.1-prealpha.1, =0.1.0, =0.2.0 Source cves: CVE-2017-1000168 Source advisory: OSV:GHSA-2WC6-2RCJ-8V76...

Incorrect Comparison in sodiumoxide

An issue was discovered in the sodiumoxide crate starting with 0.2.0 and prior to 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

GHSA-WRVC-72W7-XPMJ Incorrect Comparison in sodiumoxide

An issue was discovered in the sodiumoxide crate starting with 0.2.0 and prior to 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

Unspecified Vulnerability in Mozilla Rust (CNVD-2021-36330)

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in sodiumoxide crate for Rust versions prior to 0.2.5, which stems from generichash::Digest::eq comparing itself and thus has degenerate security properties. No details of the...

CVE-2019-25002

An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

CVE-2019-25002

An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

Design/Logic Flaw

An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

CVE-2019-25002

The CVE-2019-25002 issue affects the sodiumoxide crate for Rust prior to version 0.2.5. The vulnerability stems from generichash::Digest::eq comparing the value to itself, producing degenerate security properties (reported across Red Hat, OSV, GHSA advisories, and NVD records). Practical impact i...

CVE-2019-25002

An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in sodiumoxide crate for Rust versions prior to 0.2.5, which stems from generichash::Digest::eq comparing itself and thus has degenerate security properties. No details of the...

RUSTSEC-2020-0003 rust_sodium is unmaintained; switch to a modern alternative

The rustsodium crate is no longer maintained by its current owner, who advise in the repository readme that they are looking for someone else to take ownership of it. We recommend you switch to an alternative crate such as: - sodiumoxide...

rust_sodium is unmaintained; switch to a modern alternative

The rustsodium crate is no longer maintained by its current owner, who advise in the repository readme that they are looking for someone else to take ownership of it. We recommend you switch to an alternative crate such as: - sodiumoxide...

b2b (=0.1.0), box_stream (>=0.1.0 <=0.2.1) +57 more potentially affected by CVE-2019-25002 via sodiumoxide (>=0.0.10 <=0.1.0)

sodiumoxide CARGO version =0.0.10, =0.1.0, =0.0.7, =0.1.0, =0.5.0, =0.0.0, =2.0.1, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.9, =0.2.5 and more Source cves: CVE-2019-25002 Source advisory: OSV:RUSTSEC-2019-0026...