Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-qwhm-h7v3-mrjx
  • crates.io/ntpd
Improper handling of NTS cookie length that could crash the ntpd-rs server
  • See details.
2023-05-30T09:05:58Z Fix available
RUSTSEC-2023-0019
  • crates.io/kuchiki
`kuchiki` is unmaintained
  • See details.
2023-05-23T20:17:25Z No fix available
RUSTSEC-2023-0037
  • crates.io/xsalsa20poly1305
crate has been renamed to `crypto_secretbox`
  • See details.
2023-05-17T03:02:51Z No fix available
GHSA-ch89-5g45-qwc7
  • crates.io/wasmtime
  • crates.io/wasmtime
  • crates.io/wasmtime
Undefined Behavior in Rust runtime functions
  • See details.
2023-05-11T20:54:34Z Fix available
GHSA-mphm-gqh9-q59x
  • crates.io/microbin
Stored cross site scripting in Microbin
  • See details.
2023-05-09T18:48:39Z Fix available
GHSA-4wm2-cwcf-wwvp
  • crates.io/tauri
  • crates.io/tauri
  • crates.io/tauri
Tauri Open Redirect Vulnerability Possibly Exposes IPC to External Sites
  • See details.
2023-05-03T21:57:22Z Fix available
GHSA-vr8j-hgmm-jh9r
  • crates.io/openssl-src
openssl-src subject to DoS by double-checked locking
  • See details.
2023-05-02T16:35:23Z Fix available
GHSA-c25x-cm9x-qqgx
  • crates.io/Deno
  • crates.io/serde_v8
  • crates.io/deno_runtime
Deno improperly handles resizable ArrayBuffer
  • 1.32.0
  • 0.87.0
  • 0.102.0
2023-05-01T21:25:28Z Fix available
GHSA-f8vr-r385-rh5r
  • crates.io/h2
h2 vulnerable to denial of service
  • See details.
2023-05-01T21:22:01Z Fix available
GHSA-xwqr-xmgg-j69q
  • crates.io/solana_rbpf
Integer overflow in solana_rbpf
  • See details.
2023-04-26T22:14:09Z Fix available
GHSA-mjv9-vp6w-3rc9
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
  • crates.io/aws-sigv4
AWS SDK for Rust will log AWS credentials when TRACE-level logging is enabled for request sending
  • 0.55.0
  • 0.54.1
  • 0.53.1
  • 0.52.0
  • 0.51.0
  • 0.49.0
  • 0.48.0
  • ...
2023-04-26T16:01:10Z Fix available
RUSTSEC-2023-0036
  • crates.io/tree_magic
tree_magic is Unmaintained
  • See details.
2023-04-25T03:08:42Z No fix available
GHSA-qvc4-78gw-pv8p
  • crates.io/enumflags2
Adverserial use of `make_bitflags!` macro can cause undefined behavior
  • See details.
2023-04-24T16:47:24Z Fix available
RUSTSEC-2023-0035
  • crates.io/enumflags2
Adverserial use of `make_bitflags!` macro can cause undefined behavior
  • See details.
2023-04-23T20:33:42Z Fix available
RUSTSEC-2023-0034
  • crates.io/h2
Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)
  • See details.
2023-04-20T19:17:55Z Fix available
GHSA-fjx5-qpf4-xjf2
  • crates.io/borsh
Parsing borsh messages with ZST which are not-copy/clone is unsound
  • See details.
2023-04-17T16:32:26Z No fix available