Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
RUSTSEC-2021-0122
  • crates.io/flatbuffers
Generated code can read and write out of bounds in safe code
  • See details.
2022-06-24T14:17:18Z No fix available
GHSA-67hm-27mx-9cg7
  • crates.io/deno
Link Following in Deno
  • See details.
2022-06-23T06:44:34Z Fix available
GHSA-cqpr-pcm7-m3jc
  • crates.io/chrono
Potential segfault in `localtime_r` invocations
  • See details.
2022-06-22T19:45:15Z No fix available
GHSA-75rw-34q6-72cr
  • crates.io/biscuit-auth
  • Go/https://github.com/biscuit-auth/biscuit-go
  • Maven/com.clever-cloud:biscuit-java
Signature forgery in Biscuit
  • 0.2.1
  • 0.2.2
  • 0.2.3
  • 0.2.4
  • 0.2.5
  • 0.2.6
  • 0.2.7
  • ...
2022-06-22T18:02:11.547619Z Fix available
GHSA-v78m-2q7v-fjqp
  • crates.io/rulex
Uncontrolled Recursion in rulex
  • See details.
2022-06-22T17:52:51Z Fix available
GHSA-8v9w-p43c-r885
  • crates.io/rulex
Reachable Assertion in rulex
  • See details.
2022-06-22T14:43:45Z Fix available
GHSA-jrcf-4jp8-m28v
  • crates.io/miow
  • crates.io/miow
miow invalidly assumes the memory layout of std::net::SocketAddr
  • See details.
2022-06-21T16:06:58Z Fix available
GHSA-83gg-pwxf-jr89
  • crates.io/array-macro
`array!` macro is unsound in presence of traits that implement methods it calls internally
  • See details.
2022-06-20T18:27:06Z Fix available
GHSA-7v4j-8wvr-v55r
  • crates.io/array-macro
`array!` macro is unsound when its length is impure constant
  • See details.
2022-06-20T18:24:00Z Fix available
GHSA-rxhx-9fj6-6h2m
  • crates.io/enum-map
enum_map macro can cause UB when `Enum` trait is incorrectly implemented
  • See details.
2022-06-20T18:15:47Z Fix available
RUSTSEC-2022-0025
  • crates.io/openssl-src
Resource leakage when decoding certificates and keys
  • See details.
2022-06-20T12:19:49Z Fix available
RUSTSEC-2022-0026
  • crates.io/openssl-src
Incorrect MAC key used in the RC4-MD5 ciphersuite
  • See details.
2022-06-20T12:19:49Z Fix available
RUSTSEC-2022-0027
  • crates.io/openssl-src
`OCSP_basic_verify` may incorrectly verify the response signing certificate
  • See details.
2022-06-20T12:19:49Z Fix available
GHSA-4rjr-3gj2-5crq
  • crates.io/mongors
Exposure of Sensitive Information to an Unauthorized Actor in MongoDB Rust Driver
  • See details.
2022-06-17T21:39:29Z Fix available
GHSA-w3vw-ccc5-qr8v
  • crates.io/tss-esapi
  • crates.io/tss-esapi
Use After Free in Context::start_auth_session
  • See details.
2022-06-17T01:17:41Z Fix available
GHSA-x4mq-m75f-mx8m
  • crates.io/windows
Delegate functions are missing `Send` bound
  • See details.
2022-06-17T00:30:33Z Fix available