advisory-db

mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00

Author	SHA1	Message	Date
Dirkjan Ochtman	11544c4df7	Fix candidate advisory ID	2025-09-11 14:19:17 +02:00
Damir Jelić	2344133159	Add CVE-2025-59047 for matrix-sdk-base (#2401 )	2025-09-11 14:10:54 +02:00
djc	1e25ffc23b	Assigned RUSTSEC-2025-0064 to wren_rust	2025-09-11 09:03:09 +02:00
John Vandenberg	5756e1e8d9	Fix unaffected for RUSTSEC-2024-0376.md	2025-09-11 09:02:22 +02:00
Shihao Xia	63911f592a	wren_rust init	2025-09-11 09:01:15 +02:00
djc	4502646ddd	Assigned RUSTSEC-2025-0063 to fast-able	2025-09-11 08:59:56 +02:00
Shihao Xia	e149034a49	fast-able possible unsound public API (#2287 )	2025-09-11 08:58:33 +02:00
djc	b8a3db1f9c	Assigned RUSTSEC-2025-0062 to toodee	2025-09-08 11:12:38 +02:00
George Androutsopoulos	6c259b061a	Buffer Overflow in toodee DrainCol destructor (#2325 ) Co-authored-by: Georgios Androutsopoulos <georgeandrout@gamac.local>	2025-09-08 11:10:32 +02:00
djc	990d59460b	Assigned RUSTSEC-2025-0059 to servo-fontconfig, RUSTSEC-2025-0060 to crypto-hash, RUSTSEC-2025-0061 to iron	2025-09-08 11:09:54 +02:00
John Vandenberg	8251d4843b	Add unmaintained advisory for iron	2025-09-08 11:08:47 +02:00
John Vandenberg	412b34dba3	Add unmaintained advisory for crypto-hash	2025-09-08 11:05:31 +02:00
John Vandenberg	0b87b239ac	Add unmaintained advisory for servo-fontconfig	2025-09-08 11:04:20 +02:00
djc	6366de025d	Assigned RUSTSEC-2025-0058 to custom_derive	2025-09-07 10:38:20 +02:00
John Vandenberg	15591dc0c7	Add unmaintained advisory for custom_derive	2025-09-07 08:18:03 +02:00
djc	d6c6489daf	Assigned RUSTSEC-2025-0057 to fxhash	2025-09-05 21:09:01 +02:00
Sam	dbaedaed96	Add advisory for unmaintained fxhash crate	2025-09-05 21:02:11 +02:00
djc	01f8f6b36e	Assigned RUSTSEC-2025-0056 to adler	2025-09-05 11:05:48 +02:00
John Vandenberg	0feb7c883b	Add unmaintained advisory for adler	2025-09-05 10:55:15 +02:00
djc	20a8af2bdc	Assigned RUSTSEC-2025-0055 to tracing-subscriber	2025-09-02 13:05:02 +02:00
Eli Wenig	6ba91d3fd4	add CVE-2025-58160 details to tracing-subscriber (#2377 )	2025-09-02 13:04:04 +02:00
djc	97dec1d752	Assigned RUSTSEC-2025-0054 to array-queue	2025-09-01 14:55:53 +02:00
George Androutsopoulos	ad75531bdb	The API ArrayQueue::push_front is not panic-safe (#2363 ) * ArrayQueue::push_front is not panic-safe * Add patch info --------- Co-authored-by: Georgios Androutsopoulos <georgeandrout@gamac.local>	2025-09-01 14:54:09 +02:00
djc	ed23fda8bc	Assigned RUSTSEC-2025-0053 to arenavec	2025-09-01 09:59:00 +02:00
George Androutsopoulos	835b4f6331	Multiple memory corruption vulnerabilities in arenavec (#2364 ) Co-authored-by: Georgios Androutsopoulos <georgeandrout@gamac.local>	2025-09-01 09:58:09 +02:00
John Vandenberg	01ca7adeec	Remove unaffected from RUSTSEC-2020-0095.md	2025-08-30 08:09:56 +02:00
github-actions[bot]	53af8988c5	Assigned RUSTSEC-2024-0443 to webp (#2374 ) Co-authored-by: Shnatsel <291257+Shnatsel@users.noreply.github.com>	2025-08-29 17:09:41 +01:00
Sergey "Shnatsel" Davidoff	7626fd2d51	Advisory for WebP encoder soundness (#2373 ) * Advisory for WebP encoder soundness * many functions are affected, don't restrict it so much	2025-08-29 17:09:07 +01:00
djc	11793a852b	Assigned RUSTSEC-2025-0052 to async-std	2025-08-27 13:36:30 +02:00
Sanpi	6b6d8158ae	Add discontinued async-std crate	2025-08-27 13:33:01 +02:00
djc	4f41cf9977	Assigned RUSTSEC-2025-0051 to xcb	2025-08-22 13:20:53 +02:00
En-En	bf013bc589	`xcb` `connect_to_fd*` constructors unsound (#2355 )	2025-08-22 13:02:49 +02:00
github-actions[bot]	61aac2116c	Assigned RUSTSEC-2025-0050 to id-map (#2368 )	2025-08-15 20:42:09 +02:00
George Androutsopoulos	13bf15a143	id-map: free uninitialized memory on drop	2025-08-15 19:52:18 +02:00
djc	e8656e02cf	Assigned RUSTSEC-2025-0049 to scratchpad	2025-08-14 22:48:29 +02:00
Georgios Androutsopoulos	9b3641d0aa	HBOF due to user-defined implementations of scratchpad::Tracking (fix note)	2025-08-14 22:02:40 +02:00
Georgios Androutsopoulos	0dc8063289	HBOF due to user-defined implementations of scratchpad::Tracking (add note)	2025-08-14 22:02:40 +02:00
Georgios Androutsopoulos	1196d728d5	HBOF due to user-defined implementations of scratchpad::Tracking (fix ref)	2025-08-14 22:02:40 +02:00
Georgios Androutsopoulos	34340505ee	HBOF due to user-defined implementations of scratchpad::Tracking	2025-08-14 22:02:40 +02:00
djc	5c87b92613	Assigned RUSTSEC-2025-0048 to tsify-next	2025-08-13 16:05:32 +02:00
Theo von Arx	77b281475f	Add unmaintained advisory for tsify-next	2025-08-13 16:04:42 +02:00
djc	eadb7bac15	Assigned RUSTSEC-2025-0047 to slab	2025-08-12 11:41:13 +02:00
Motoyuki Kimura	14405bc0b3	Add history of slab's OOB issue	2025-08-12 11:23:49 +02:00
dependabot[bot]	cebfd04415	Bump actions/checkout from 4 to 5 Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2025-08-12 07:53:19 +02:00
Sola	388a3128c3	Fix typo in RUSTSEC-2025-0012	2025-08-06 11:33:04 +02:00
Luke Simmons	c62e71ad8c	Update RUSTSEC-2024-0436 to include possible alternative Update RUSTSEC-2024-0436 to include pastey as an alternative to paste.	2025-07-23 15:03:26 +02:00
djc	babf308081	Assigned RUSTSEC-2025-0046 to wasmtime	2025-07-18 21:48:13 +02:00
Roman Volosatovs	9f011d2bfd	wasmtime: `fd_renumber` panic Signed-off-by: Roman Volosatovs <rvolosatovs@riseup.net>	2025-07-18 21:26:23 +02:00
djc	b0d34babef	Assigned RUSTSEC-2025-0045 to static_cell	2025-07-17 16:38:11 +02:00
ROMemories	0ecf0f6ca3	static_cell: report unsoundness in `ConstStaticCell`	2025-07-17 16:09:10 +02:00

1 2 3 4 5 ...

2528 Commits