Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
RUSTSEC-2022-0057
  • crates.io/badge
badge is Unmaintained
  • See details.
2022-10-04T12:12:52Z No fix available
GHSA-vp68-2wrm-69qm
  • crates.io/matrix-sdk-crypto
matrix-sdk-crypto contains potential impersonation via room key forward responses
  • See details.
2022-09-30T22:51:57Z Fix available
RUSTSEC-2022-0056
  • crates.io/clipboard
clipboard is Unmaintained
  • See details.
2022-09-24T11:52:27Z No fix available
GHSA-v57h-6hmh-g2p4
  • crates.io/frontier
Weight not properly refunded after EVM execution
  • See details.
2022-09-23T23:39:17Z No fix available
GHSA-28m8-9j7v-x499
  • crates.io/tauri
Tauri's readDir Endpoint Scope can be Bypassed With Symbolic Links
  • See details.
2022-09-22T17:28:05Z Fix available
GHSA-crf8-h2wq-2h9x
  • PyPI/pywasm3
  • crates.io/wasm3
WASM3 Improper Input Validation vulnerability
  • 0.0.1
  • 0.0.2
  • 0.4.8
  • 0.4.9
  • 0.5.0
2022-09-21T21:29:29.553539Z No fix available
GHSA-2hvr-h6gw-qrxp
  • crates.io/cargo
Cargo extracting malicious crates can fill the file system
  • See details.
2022-09-21T19:54:59Z Fix available
GHSA-rfj2-q3h3-hm5j
  • crates.io/cargo
Cargo extracting malicious crates can corrupt arbitrary files
  • See details.
2022-09-21T19:53:20Z Fix available
GHSA-28r9-pq4c-wp3c
  • crates.io/personnummer
personnummer/rust vulnerable to Improper Input Validation
  • See details.
2022-09-21T15:36:11Z Fix available
GHSA-m4vx-ccrf-w399
  • crates.io/routinator
NLnet Labs Routinator has Reachable Assertion vulnerability
  • See details.
2022-09-20T18:15:00Z Fix available
GHSA-mmjf-f5jw-w72q
  • crates.io/openssl-src
Invalid handling of `X509_verify_cert()` internal errors in libssl
  • See details.
2022-09-19T21:58:21Z Fix available
GHSA-m77f-652q-wwp4
  • crates.io/axum-core
  • crates.io/axum-core
axum-core has no default limit put on request bodies
  • 0.3.0-rc.1
2022-09-19T19:22:47Z Fix available
GHSA-75rw-34q6-72cr
  • crates.io/biscuit-auth
  • Go/github.com/biscuit-auth/biscuit-go
  • Maven/com.clever-cloud:biscuit-java
Signature forgery in Biscuit
  • 0.2.1
  • 0.2.2
  • 0.2.3
  • 0.2.4
  • 0.2.5
  • 0.2.6
  • 0.2.7
  • ...
2022-09-19T02:29:45.454208Z Fix available
RUSTSEC-2021-0139
  • crates.io/ansi_term
ansi_term is Unmaintained
  • See details.
2022-09-17T14:06:50Z No fix available
GHSA-p75v-367r-2v23
  • crates.io/cell-project
`cell-project` used incorrect variance when projecting through `&Cell<T>`
  • See details.
2022-09-16T21:08:19Z Fix available
GHSA-v8gq-5grq-9728
  • crates.io/mozjpeg
mozjpeg DecompressScanlines::read_scanlines is Unsound
  • See details.
2022-09-16T21:03:43Z Fix available