rustsec/advisory-db
1
0
Fork 0
mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00
Code Issues Packages Projects Releases Wiki Activity

Assigned RUSTSEC-2024-0424 to libafl, RUSTSEC-2024-0425 to get-size, RUSTSEC-2024-0426 to spl-token-swap, RUSTSEC-2024-0427 to get-size-derive, RUSTSEC-2024-0428 to kvm-ioctls (#2175)

Browse Source 
Co-authored-by: Shnatsel <291257+Shnatsel@users.noreply.github.com>
This commit is contained in:
github-actions[bot]
2024-12-22 09:01:06 +00:00
committed by GitHub
parent 6efd56a717
commit 8737f2a942
6 changed files with 7 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.duplicate-id-guard
View File

@@ -1,3 +1,3 @@
This file causes merge conflicts if two ID assignment jobs run concurrently.
This prevents duplicate ID assignment due to a race between those jobs.
750771d772c1008f195bddfb04558f4978cbb10636c99c8554510cd83d2c8a17 -
3f34d92fa031f4d1ba6e26266cebb6ac680e1383b6a8b4b335cea124775916bc -

2
crates/get-size-derive/RUSTSEC-0000-0000.md → crates/get-size-derive/RUSTSEC-2024-0427.md
View File

@@ -1,6 +1,6 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
id = "RUSTSEC-2024-0427"
package = "get-size-derive"
date = "2024-09-15"
informational = "unmaintained"

2
crates/get-size/RUSTSEC-0000-0000.md → crates/get-size/RUSTSEC-2024-0425.md
View File

@@ -1,6 +1,6 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
id = "RUSTSEC-2024-0425"
package = "get-size"
date = "2024-09-15"
informational = "unmaintained"

2
crates/kvm-ioctls/RUSTSEC-0000-0000.md → crates/kvm-ioctls/RUSTSEC-2024-0428.md
View File

@@ -1,6 +1,6 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
id = "RUSTSEC-2024-0428"
package = "kvm-ioctls"
url = "https://github.com/rust-vmm/kvm/pull/298"
date = "2024-12-05"

4
crates/libafl/RUSTSEC-0000-0000.md → crates/libafl/RUSTSEC-2024-0424.md
View File

@@ -1,6 +1,6 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
id = "RUSTSEC-2024-0424"
package = "libafl"
date = "2024-12-19"
url = "https://github.com/AFLplusplus/LibAFL/issues/1526"
@@ -20,4 +20,4 @@ functions = {"libafl::observers::map::HitcountsMapObserver::post_exec" = ["< 0.1
The library breaks the safety assumptions when using unsafe API `slice::from_raw_parts_mut`. The pointer passed to `from_raw_parts_mut` is misaligned by casting `u8` to `u16` raw pointer directly, which is unsound. The bug is patched by using `align_offset`, which could make sure the memory address is aligned to 2 bytes for `u16`.
This was patched in 0.11.2 in the [commit](https://github.com/AFLplusplus/LibAFL/pull/1530/commits/5a60cb31ef587d71d09d534bba39bd3973c4b35d).
This was patched in 0.11.2 in the [commit](https://github.com/AFLplusplus/LibAFL/pull/1530/commits/5a60cb31ef587d71d09d534bba39bd3973c4b35d).

2
crates/spl-token-swap/RUSTSEC-0000-0000.md → crates/spl-token-swap/RUSTSEC-2024-0426.md
View File

@@ -1,6 +1,6 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
id = "RUSTSEC-2024-0426"
package = "spl-token-swap"
date = "2024-12-19"
url = "https://github.com/solana-labs/solana-program-library/issues/5243"