Vulnerability Library

ID
Packages
Summary
Affected versions
Published
Fix
GHSA-q8wc-j5m9-27w3
  • crates.io/quinn-proto
Denial of Service issue in quinn-proto
  • See details.
2023-09-21T17:16:54Z Fix available
GHSA-whhr-7f2w-qqj2
  • crates.io/phonenumber
  • crates.io/phonenumber
phonenumber panics on parsing crafted RF3966 inputs
  • See details.
2023-09-21T17:10:57Z Fix available
GHSA-cxvp-82cq-57h2
  • crates.io/blurhash
blurhash panics on parsing crafted inputs
  • 0.1.1
2023-09-21T17:10:22Z Fix available
GHSA-v5wf-jg37-r9m5
  • crates.io/sqlpage
SQLpage vulnerable to public exposure of database credentials
  • See details.
2023-09-21T17:10:06Z Fix available
GHSA-2r3c-m6v7-9354
  • crates.io/sudo-rs
sudo-rs Session File Relative Path Traversal vulnerability
  • See details.
2023-09-21T17:07:15Z Fix available
RUSTSEC-2023-0063
  • crates.io/quinn-proto
Denial of service in Quinn servers
  • See details.
2023-09-21T12:00:00Z Fix available
GHSA-9mcr-873m-xcxp
  • crates.io/tungstenite
Tungstenite allows remote attackers to cause a denial of service
  • See details.
2023-09-21T06:30:25Z No fix available
GHSA-gw5p-q8mj-p7gh
  • crates.io/wasmtime
  • crates.io/wasmtime
  • crates.io/wasmtime
Miscompilation of wasm `i64x2.shr_s` instruction with constant input on x86_64
  • See details.
2023-09-14T19:33:17Z Fix available
GHSA-6jmw-6mxw-w4jc
  • crates.io/bcder
BER/CER/DER decoder panics on invalid input
  • See details.
2023-09-13T15:31:14Z Fix available
RUSTSEC-2023-0062
  • crates.io/bcder
BER/CER/DER decoder panics on invalid input
  • See details.
2023-09-13T12:00:00Z Fix available
GHSA-j7hp-h8jx-5ppr
  • crates.io/libwebp-sys2
  • crates.io/libwebp-sys
  • npm/electron
  • npm/electron
  • npm/electron
  • npm/electron
  • npm/electron
  • NuGet/SkiaSharp
  • Go/github.com/chai2010/webp
libwebp: OOB write in BuildHuffmanTable
  • 2.80.0
  • 2.80.1
  • 2.80.2
  • 2.80.3
  • 2.80.4
  • 2.88.0
  • 2.88.1
  • ...
2023-09-12T15:30:20Z Fix available
RUSTSEC-2023-0060
  • crates.io/libwebp-sys2
libwebp: OOB write in BuildHuffmanTable
  • See details.
2023-09-12T12:00:00Z Fix available
RUSTSEC-2023-0061
  • crates.io/libwebp-sys
libwebp: OOB write in BuildHuffmanTable
  • See details.
2023-09-12T12:00:00Z Fix available
GHSA-36xm-35qq-795w
  • crates.io/inventory
Inventory exposes reference to non-Sync data to an arbitrary thread
  • See details.
2023-09-11T20:43:41Z Fix available
GHSA-jcr6-4frq-9gjj
  • crates.io/users
Users vulnerable to unaligned read of `*const *const c_char` pointer
  • See details.
2023-09-11T20:43:31Z No fix available
GHSA-ghc8-5cgm-5rpf
  • crates.io/inventory
Inventory fails to prohibit standard library access prior to initialization of Rust standard library runtime
  • See details.
2023-09-11T20:43:17Z Fix available