Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-c86p-w88r-qvqr
  • crates.io/ring
ring has some AES functions that may panic when overflow checking is enabled in 2 days ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-2w4w-4385-vh4h
  • crates.io/wgp
wgp race condition in inner::drop 3 days ago
  • No fix available
  • Severity - 2.9 (Low)
GHSA-6x45-r4pr-5362
  • crates.io/trailer
trailer mishandles allocating with a size of zero 3 days ago
  • No fix available
  • Severity - 2.9 (Low)
GHSA-8m95-fffc-h4c5
  • crates.io/libsql-sqlite3-parser
libsql-sqlite3-parser crash due to invalid UTF-8 input 3 days ago
  • No fix available
  • Severity - 2.9 (Low)
GHSA-4h96-mv53-2c86
  • crates.io/fast_id_map
fast_id_map has a soundness issue and is unmaintained 4 days ago
  • No fix available
GHSA-79m9-55jc-p6mw
  • crates.io/scanner
scanner has a Public API without sufficient bounds checking 5 days ago
  • No fix available
  • Severity - 2.7 (Low)
GHSA-qv97-5qr8-2266
  • crates.io/mithril-client
Mithril snapshots for Cardano database could be compromised by an adversary 5 days ago
  • Fix available
  • Severity - 4.9 (Medium)
GHSA-58xc-hpvq-8473
  • crates.io/redox_uefi_std
Redox UEFI Safe API can cause heap-buffer-overflow 5 days ago
  • Fix available
GHSA-m2xr-2vj4-wh94
  • crates.io/tanton_engine
tanton_engine has unsound public API 5 days ago
  • No fix available
RUSTSEC-2025-0034
  • crates.io/fast_id_map
soundness issue and unmaintained 6 days ago
  • No fix available
GHSA-jf2r-x3j4-23m7
  • crates.io/openvm
OpenVM allows the byte decomposition of pc in AUIPC chip to overflow 6 days ago
  • Fix available
  • Severity - 7.8 (High)
GHSA-v2p5-q653-9j99
  • crates.io/obfstr
obfstr Type Confusion vulnerability 02 May
  • Fix available
  • Severity - 2.9 (Low)
GHSA-927q-g9w9-pm54
  • crates.io/mp3-metadata
Panic in mp3-metadata due to the lack of bounds checking 30 Apr
  • Fix available
  • Severity - 5.5 (Medium)
RUSTSEC-2025-0025
  • crates.io/rustc-serialize
rustc-serialize is unmaintained 28 Apr
  • No fix available
RUSTSEC-2025-0027
  • crates.io/mp3-metadata
Panic in mp3-metadata due to the lack of bounds checking 28 Apr
  • Fix available
RUSTSEC-2025-0031
  • crates.io/tanton_engine
Unsound public API in unmaintained crate 24 Apr
  • No fix available