Decompressing invalid data can leak information from uninitialized memory or reused output buffer

tracing-ethers was removed from crates.io due to malicious code

RustSec Advisory

chrono_anchor was removed from crates.io due to malicious code

Denial of service in Quinn endpoints

time-sync was removed from crates.io due to malicious code

HTTP Request Smuggling via Premature Upgrade

HTTP Request Smuggling via HTTP/1.0 and Transfer-Encoding Misparsing

Cache poisoning via insecure-by-default cache key

dnp3times was removed from crates.io due to malicious code

time_calibrators was removed from crates.io due to malicious code

time_calibrator was removed from crates.io due to malicious code

Double-free and use-after-free for Hive

tracings was removed from crates.io for malicious code

tracing_checks was removed from crates.io for transitively including malicious code

X25519 secret validation did not check buffer length or clamping

Panic in libcrux-psq on decryption of malformed AES-GCM ciphertext

Incorrect X25519 clamping check rejects all secrets on import

Unnecessary clamping of seed reduces seed entropy to 251 bits

hexchat crate is unsound and unmaintained

Guest-controlled resource exhaustion in WASI implementations

Panic when dropping a [Typed]Func::call_async future

Panic adding excessive fields to a wasi:http/types.fields instance

rpc-check was removed from crates.io for malicious code

tracing-check was removed from crates.io for malicious code

clob-sdk was removed from crates.io for malicious code

polymarkets-rs-clob-client was removed from crates.io for malicious code

polymarkets-client-sdk was removed from crates.io for malicious code

rpc-check was removed from crates.io for malicious code

Type confusion when accessing data from sublasses of subclasses of native types with abi3 feature targeting Python 3.12 and up

Unsoundness in opt-in ARMv8 assembly backend for keccak

polymarket-client-sdks was removed from crates.io for malicious code

sha-rst was removed from crates.io for malicious code

finch_cli_rust was removed from crates.io for malicious code

finch-rst was removed from crates.io for malicious code

World Writable Directory in /var/log/below Allows Local Privilege Escalation

Denial of Service via Stack Exhaustion

polymarket-clients-sdk was removed from crates.io for malicious code

finch-rust was removed from crates.io for malicious code

uniswap-utils was removed from crates.io for malicious code

sha-rust was removed from crates.io for malicious code

evm-units was removed from crates.io for malicious code

Potential undefined behavior when dereferencing Buf struct

Integer overflow in BytesMut::reserve

Unsound APIs of public constant::Reader and StructSchema

Timing side-channel in ML-DSA decomposition

Wasmtime segfault or unused out-of-sandbox load with f64.copysign operator on x86-64

Potential use-after-free in oneshot when used asynchronously

Triton VM Soundness Vulnerability due to Improper Sampling of Randomness

Use After Free in lucet-runtime

Non-constant-time code generation on ARM32 targets

Segmentation fault and invalid memory read in mnl::cb_run

Bincode is unmaintained

IterMut violates Stacked Borrows by invalidating internal pointer

Potential Undefined Behaviors in Arc<T>/Rc<T> impls of from_value on OOM

Non-utf8 String can be created with TimeBuf::as_str

theshit vulnerable to unsafe loading of user-owned Python rules when running as root

--allow-read / --allow-write permission bypass in node:sqlite

Plaintext exposed in decrypt_in_place_detached even on tag verification failure

Panics on Malformed Untrusted Input

Unsoundness of safe reciprocal_mg10

Invalid Slice Split Results in Server Panic

Shell expansion in custom commands

Incorrect signature verification on gzip-compressed install images

Uncaught exception when transitioning the state of AsyncGenerator objects from within a property getter of then

cap-primitives doesn't fully sandbox all the Windows device filenames

Underflow in aes_key_unwrap function

matrix-sdk-base: Denial of service due to custom m.room.join_rules events

rustls-pemfile is unmaintained

Incorrect calculation on aarch64

Reader::open_mmap unsoundly marks unsafe memmap operation as safe

Lack of sufficient checks in public API

CGGMP21 presignatures can be used in the way that significantly reduces security

Missing check in ZK proof in CGGMP21 Threshold Signing Protocol

Missing check in ZK proof in CGGMP21 Threshold Signing Protocol

CGGMP21 presignatures can be used in the way that significantly reduces security

Heap-buffer-overflow in nftnl::Batch::with_page_size (nftnl-rs)

Resource Exhaustion (Memory and Handle Leaks) on Windows and macOS

cargo-asm crate is unmaintained

rand_os crate is unmaintained

opentelemetry-jaeger crate is unmaintained

gcc crate is unmaintained

number_prefix crate is unmaintained

Unsound API access to a WebAssembly shared linear memory

tandem_garble_interop is unmaintained

tandem is unmaintained

tandem_http_client is unmaintained

tandem_http_server is unmaintained

soundness issue and unmaintained

astral-tokio-tar Vulnerable to PAX Header Desynchronization

tokio-tar parses PAX extended headers incorrectly, allows file smuggling

Possible host crash with host-to-wasm component intrinsics

Out-of-bounds memory access in binary_read_to_ref and binary_write_from_ref

Uninitialized memory exposure in any_as_u8_slice

Uninitialized memory exposure in string reading functions

unic is unmaintained

unic-idna-punycode is unmaintained

unic-utils is unmaintained

unic-ucd-age is unmaintained

unic-emoji is unmaintained

unic-ucd-name is unmaintained

unic-ucd is unmaintained

unic-ucd-version is unmaintained

Undefined behavior in index_of_ptr with empty slices

unic-ucd-segment is unmaintained

unic-ucd-category is unmaintained

unic-emoji-char is unmaintained

unic-ucd-ident is unmaintained

Uninitialized memory exposure in create_ring_buffer

unic-char-range is unmaintained

unic-ucd-normal is unmaintained

unic-char is unmaintained

unic-common is unmaintained

unic-ucd-bidi is unmaintained

unic-ucd-block is unmaintained

unic-segment is unmaintained

unic-char-property is unmaintained

unic-ucd-case is unmaintained

unic-cli is unmaintained

unic-normal is unmaintained

unic-ucd-name_aliases is unmaintained

unic-idna-mapping is unmaintained

unic-char-basics is unmaintained

unic-ucd-common is unmaintained

unic-idna is unmaintained

unic-bidi is unmaintained

unic-ucd-hangul is unmaintained

unic-ucd-core is unmaintained

DoS vulnerability on alloy_dyn_abi::TypedData hashing

soundness issue and unmaintained

Incorrect handling of embedded SVG and MathML leads to mutation XSS after removal

Pingora MadeYouReset HTTP/2 vulnerability

daemonize is Unmaintained

martin-mbtiles has been renamed to mbtiles

Uninitalized memory read & leak caused by fuser crate

serde_yml crate is unsound and unmaintained

libyml::string::yaml_string_extend is unsound and unmaintained

Possible unsound public API

The google-apis-rs project is now unmaintained

matrix-sdk-base: Panic in the RoomMember::normalized_power_level() method

soundness issue and unmaintained

iron crate is unmaintained

Heap Buffer Overflow in the DrainCol Destructor

servo-fontconfig crate is unmaintained

crypto-hash crate is unmaintained

custom_derive crate is unmaintained

adler crate is unmaintained, use adler2 instead

fxhash - no longer maintained

Logging user input may result in poisoning logs with ANSI escape sequences

Multiple memory corruption vulnerabilities in safe APIs

ArrayQueue::push_front is not panic-safe

webp crate may expose memory contents when encoding an image

async-std has been discontinued

xcb::Connection::connect_to_fd* functions violate I/O safety

IdMap::from_iter may lead to uninitialized memory being freed on drop

User-defined implementations of the safe trait scratchpad::Tracking can cause heap buffer overflows

tsify-next is unmaintained, use tsify instead

Out-of-bounds access in get_disjoint_mut due to incorrect bounds check

Host panic with fd_renumber WASIp1 function

ConstStaticCell could have been used to pass non-Send values to another thread

Four unique double-free vulnerabilities triggered via safe APIs

Uninitialized read after allocating MemBump

matrix-sdk-sqlite: SQL injection vulnerability in SqliteEventCacheStore::find_event_with_relations

Dump Undefined Memory by JitDumpFile

matrix-sdk-crypto vulnerable to encrypted event sender spoofing by homeserver administrator

root appended to group listings

Lack of sufficient checks in public API

Out of bounds access in public safe API

Pingora Request Smuggling and Cache Poisoning

surf is unmaintained

Multiple soundness issues in macroquad

soundness issue and unmaintained

Public API without sufficient bounds checking

Unsound public API in unmaintained crate

Safe API can cause heap-buffer-overflow

totally-safe introduces memory vulnerabilities in safe Rust

totally-safe-transmute allows transmuting any type to any other type in safe Rust

cve-rs introduces memory vulnerabilities in safe Rust

Miscompilation of i8x16.select with the same inputs on x86_64

Race condition could lead to WebAssembly control-flow integrity and type safety violations

Data leakage between instances in the pooling allocator

Miscompilation of wasm i64x2.shr_s instruction with constant input on x86_64

Miscompilation of i8x16.swizzle and select with v128 inputs

Use After Free with externrefs in Wasmtime

Use after free with externrefs and epoch interruption in Wasmtime

Wasmtime doesn't fully sandbox all the Windows device filenames

Invalid drop of VMExternRef from partially-initialized instances in the pooling instance allocator

Out of bounds write in wasmtime_trap_code C API function

Panic when using a dropped extenref-typed element segment

Out of bounds read/write with zero-memory-pages configuration

Runtime crash when combining tail calls with stack traces

Guest-controlled out-of-bounds read/write on x86_64

Undefined Behavior in Rust runtime functions

Miscompilation of constant values in division on AArch64

Panic in mp3-metadata due to the lack of bounds checking

atomic-polyfill is unmaintained

registry is unmaintained

rustc-serialize is unmaintained

crossbeam-channel: double free on Drop

Broadcast channel calls clone in parallel, but does not require Sync

Use-After-Free in Md::fetch and Cipher::fetch

SHA-1 collision attacks are not detected

Risk of buffer overflow in PyString::from_object

array-init-cursor in version 0.2.0 and below is unsound when used with types that implement Drop

Potential out-of-bounds read with a malformed ELF file and the HashTable API.

The trust-dns project has been rebranded to hickory-dns

Use after free in Parc and Prc due to missing lifetime constraints

Denial of Service via malicious Web Push endpoint

resolve is unmaintained

paste - no longer maintained

Crash due to uncontrolled recursion in protobuf crate

backoff is unmaintained.

Versions of ring prior to 0.17 are unmaintained.

openpgp-card-sequoia is unmaintained.

Some AES functions may panic when overflow checking is enabled.

Openh264 Decoding Functions Heap Overflow Vulnerability

Unsound usages of Vec::from_raw_parts

Out of bounds write triggered by crafted coverage data

Hickory DNS failure to verify self-signed RRSIG for DNSKEYs

ssl::select_next_proto use after free

Segmentation fault due to lack of bound check

Segmentation fault due to lack of bound check

Missing facility to signal rotation of a verified cryptographic identity

gix-worktree-state nonexclusive checkout sets executable files world-writable

Malicious plugin names, recipients, or identities can cause arbitrary binary execution

Malicious plugin names, recipients, or identities can cause arbitrary binary execution

Use of insecure cryptographic algorithms

Unsound usages of core::slice::from_raw_parts

Unsoundness in Iterator and DoubleEndedIterator impls for glib::VariantStrIter

Unsound usages of u8 type casting

Undefined behaviour in kvm_ioctls::ioctls::vm::VmFd::create_device

get-size is unmaintained

Unsound usages of core::slice::from_raw_parts_mut

get-size-derive is unmaintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-layer-shell-sys GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-layer-shell GTK3 bindings - no longer maintained

idna accepts Punycode labels that do not produce any non-ASCII when decoded

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

gtk-rs GTK3 bindings - no longer maintained

Unsound usages of std::slice::from_raw_parts

Build corruption when using PYO3_CONFIG_FILE environment variable

serial crate is unmaintained

op_panic in the base runtime can force a panic in the runtime's containing thread

Fails to ensure slice elements match the slice's declared type

Unsoundness in anstream

multi_mut is Unmaintained

op_panic in the base runtime can force a panic in the runtime's containing thread

Denial of service because of stack overflow with malicious decompression input

BTreeMap memory leak when deallocating nodes with overflows

Borsh serialization of HashMap is non-canonical

ruzstd uninit and out-of-bounds memory reads

rustls network-reachable panic in Acceptor::accept

Bias of Polynomial Coefficients in Secret Sharing

Mimalloc Can Allocate Memory with Bad Alignment

MaybeUninit misuse in simd-json-derive

Replaced by pqcrypto-mlkem

opentelemetry_api has been merged into the opentelemetry crate

hwloc is unmaintained

Ambiguous challenge derivation

mmap unmaintained

loopdev crate is unmaintained; use 'loopdev-3` instead.

strason is unmaintained

Replaced by pqcrypto-mldsa

conrod is unmaintained

instant is unmaintained

openslide is unmaintained

conrod_core is unmaintained

derivative is unmaintained; consider using an alternative

Ambiguous challenge derivation

Ambiguous challenge derivation

bcc is unmaintained

minitrace is Unmaintained

The maintainer of chrono-english is unresponsive

cw0 is unmaintained

Multiple soundness issues

Risk of use-after-free in borrowed reads from Python weak references

Heap Buffer overflow using c_chars_to_str function

Remotely exploitable Denial of Service in Tonic

atty is unmaintained

Segmentation fault due to use of uninitialized memory

Multiple soundness issues

Endpoint::retry() calls can lead to panicking

Memory leak when calling a canister method via ic_cdk::call

gix-path improperly resolves configuration path reported by Git

proc-macro-error is unmaintained

phonenumber: panic on parsing crafted phonenumber inputs

olm-sys: wrapped library unmaintained, potentially vulnerable

gix-path uses local config across repos when it is the highest scope

CWA-2023-004: Excessive number of function parameters in compiled Wasm

Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts

gitoxide-core does not neutralize special characters for terminals

Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts

Stack overflow when parsing specially crafted JSON ABI strings

CWA-2024-004: Gas mispricing in cosmwasm-vm

XmpFile::close can trigger UB

The kstring integration in gix-attributes is unsound

Apache Arrow Rust Object Store: AWS WebIdentityToken exposure in log files

MemBio::get_buf has undefined behavior with empty buffers

UserIdentity::is_verified not checking verification status of own user identity while performing the check

gix-path can use a fake program files location

Usage of non-constant time base64 decoder could lead to leakage of secret key material

Incorrect usage of #[repr(packed)]

Traversal outside working tree enables arbitrary code execution

Refs and paths with reserved Windows device names access the devices

Incorrect usage of #[repr(packed)]

Refs and paths with reserved Windows device names access the devices

Traversal outside working tree enables arbitrary code execution

Traversal outside working tree enables arbitrary code execution

Refs and paths with reserved Windows device names access the devices

Low severity (DoS) vulnerability in sequoia-openpgp

Timing variability in curve25519-dalek's Scalar29::sub/Scalar52::sub

Reduced entropy due to inadequate character set usage

Tor path lengths too short when "Vanguards lite" configured

Tor path lengths too short when "full Vanguards" configured

Slow loris vulnerability with default configuration

Degraded secret zeroization capabilities

The crate zip_next has been renamed to zip.

Arithmetic overflows in cosmwasm-std

rustls::ConnectionCommon::complete_io could fall into an infinite loop based on network input

gix-transport indirect code execution via malicious username

rsa-export is unmaintained

libp2p-tokio-socks5 is unmaintained

Degradation of service in h2 servers with CONTINUATION Flood

Puccinier is unmainted.

yaml-rust is unmaintained.

HPACK decoder panics on invalid input

hpack is unmaintained

Parts of Report are dropped as the wrong type during downcast

Stack buffer overflow with whoami on several Unix platforms

Tokens for named pipes may be delivered after deregistration

blurhash: panic on parsing crafted blurhash inputs

ObjectPool creates uninitialized memory when freeing objects

phonenumber: panic on parsing crafted RF3966 phonenumber inputs

Non-idiomatic use of iterators leads to use after free

safemem is unmaintained

dav1d AV1 decoder integer overflow

filesystem-rs may be implicitly unmaintained

generational-arena is unmaintained

Buffer overflow due to integer overflow in transpose

Memory corruption, denial of service, and arbitrary code execution in libgit2

Unauthenticated Nonce Increment in snow

Stack overflow during recursive JSON parsing

KyberSlash: division timings depending on secrets

Improper comparison of different-length signatures

Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')

Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')

Use-after-free when setting the locale

Unsound sending of non-Send types across threads

Multiple issues involving quote API

cosmwasm is unmaintained

Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)

serde deserialization for FamStructWrapper lacks bound checks that could potentially lead to out-of-bounds memory access

Potential stack use-after-free in Instrumented::into_inner

Unsound use of str::from_utf8_unchecked on bytes which are not UTF-8

Remotely exploitable DoS condition in Rosenpass <=0.2.0

Unaligned write of u64 on 32-bit and 16-bit platforms

cpython is unmaintained

Some Ref methods are unsound with some type parameters

Infinite decoding loop through specially crafted payload

Marvin Attack: potential key recovery through timing sidechannels

openssl X509StoreRef::objects is unsound

Insufficient covariance check makes self_cell unsound

sudo-rs: Path Traversal vulnerability

Sequential calls of encryption API (encrypt, wrap, and dump) result in nonce reuse

fehler is unmaintained; use culpa instead

Vulnerable to privilege escalation using ioctls TIOCSTI and TIOCLINUX

Tungstenite allows remote attackers to cause a denial of service

gix-transport code execution vulnerability

Denial of service in Quinn servers

BER/CER/DER decoder panics on invalid input

libwebp: OOB write in BuildHuffmanTable

libwebp: OOB write in BuildHuffmanTable

Exposes reference to non-Sync data to an arbitrary thread

Fails to prohibit standard library access prior to initialization of Rust standard library runtime

Unaligned read of *const *const c_char pointer

Default functions in VolatileMemory trait lack bounds checks, potentially leading to out-of-bounds memory accesses

Multiple soundness issues

Use-after-free in vec_insert_bytes

webpki: CPU denial of service in certificate path building

rustls-webpki: CPU denial of service in certificate path building

dlopen_derive is unmaintained

multipart is Unmaintained

Double Public Key Signing Function Oracle Attack on ed25519-dalek

tui is unmaintained; use ratatui instead

Unsoundness in intern methods on intaglio symbol interners

impl FromMdbValue for bool is unsound

Misaligned pointer dereference in ChunkId::new

memoffset allows reading uninitialized memory

openssl X509VerifyParamRef::set_host buffer over-read

ftp is unmaintained, use suppaftp instead

Ouroboros is Unsound

Remote Attackers can cause Denial-of-Service (packet loops) with crafted DNS packets

users crate is unmaintained

Out-of-bounds array access leads to panic

Out-of-bounds array access leads to panic

crate has been renamed to crypto_secretbox

tree_magic is Unmaintained

Adverserial use of make_bitflags! macro can cause undefined behavior

Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)

Parsing borsh messages with ZST which are not-copy/clone is unsound

Unsound FFI: Wrong API usage causes write past allocated area

Initialisation failure in Once::try_call_once can lead to undefined behaviour for other initialisers

Gitoxide has renamed its crates.

TLS certificate common name validation bypass

Versionize::deserialize implementation for FamStructWrapper<T> is lacking bound checks, potentially leading to out of bounds memory accesses

Gitoxide has renamed its crates.

TLS certificate common name validation bypass

buf_redux is Unmaintained

openssl X509Extension::new and X509Extension::new_nid null pointer dereference

openssl X509NameBuilder::build returned object is not thread safe

openssl SubjectAlternativeName and ExtendedKeyUsage::other allow arbitrary file read

rmp-serde Raw and RawRef unsound

NULL pointer dereference in stb_image

const-cstr is Unmaintained

nphysics3d is unmaintained

mach is unmaintained

ncollide2d is unmaintained

ncollide3d is unmaintained

boxfnonce obsolete with release of Rust 1.35.0

nphysics2d is unmaintained

out_reference::Out::from_raw should be unsafe

encoding is unmaintained

kuchiki is unmaintained

maligned::align_first causes incorrect deallocation

Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU)

Ascii allows out-of-bounds array indexing in safe code

Possible out-of-bounds read in release mode

tauri filesystem scope partial bypass

Miscompilation in cortex-m-rt 0.7.1 and 0.7.2

libsqlite3-sys via C SQLite CVE-2022-35737

pnet_packet buffer overrun in set_payload setters

aliyun-oss-client secret exposure

NULL dereference during PKCS7 data verification

Timing Oracle in RSA Decryption

Double free after calling PEM_read_bio_ex

NULL dereference validating DSA public key

X.400 address type confusion in X.509 GeneralName

Use-after-free following BIO_new_NDEF

X.509 Name Constraints Read Buffer Overflow

Invalid pointer dereference in d2i_PKCS7 functions

tauri's readDir endpoint allows possible enumeration outside of filesystem scope

tokio::io::ReadHalf<T>::unsplit is Unsound

matrix-sdk Impersonation of room keys

personnummer Input validation error

evm incorrect state transition

libp2p Lack of resource management DoS

Slack Webhooks secrets leak in debug logs

Slack OAuth Secrets leak in debug logs

bzip2 Denial of Service (DoS)

Improper validation of Windows paths could lead to directory traversal attack

git2 does not verify SSH keys by default

json is unmaintained

parity-util-mem Unmaintained

ELF header parsing library doesn't check for valid offset

Crate twoway deprecated by the author

Use-after-free due to a lifetime error in Vec::into_iter()

claim is Unmaintained

Bug in Wasmtime implementation of pooling instance allocator

Bug in pooling instance allocator

reject_remote_clients Configuration corruption

Force cast a &Vec to &[T]

crate has been renamed to embedded-alloc

Location header incorporates user input, allowing open redirect

Rusoto is unmaintained

Unsound API in secp256k1 allows use-after-free and invalid deallocation from safe code

out-of-bounds read possible when setting list-of-pointers

Improper validation of Windows paths could lead to directory traversal attack

Potential unaligned read

Invalid use of mem::uninitialized causes use-of-uninitialized-value

Denial of Service from unchecked request length

X.509 Email Address Variable Length Buffer Overflow

X.509 Email Address 4-byte Buffer Overflow

Multiple vulnerabilities resulting in out-of-bounds writes

matrix-sdk 0.6.0 logs access tokens

Crate parity-wasm deprecated by the author

orbtk is Unmaintained

Library exclusively intended to inject UB into safe Rust.

Using a Custom Cipher with NID_undef may lead to NULL encryption

badge is Unmaintained

clipboard is Unmaintained

No default limit put on request bodies

traitobject is Unmaintained

wee_alloc is Unmaintained

kamadak-exif DoS with untrusted PNG data

typemap is Unmaintained

dotenv is Unmaintained

cell-project used incorrect variance when projecting through &Cell<T>

dotenv is Unmaintained

mozjpeg DecompressScanlines::read_scanlines is Unsound

rusttype is Unmaintained

os_socketaddr invalidly assumes the memory layout of std::net::SocketAddr

mapr is Unmaintained

Memory corruption in liblz4

Interledger is Unmaintained

ansi_term is Unmaintained

Use after free in MacOS / iOS implementation

Incorrect use of set_len allows for un-initialized memory

Post-Quantum Signature scheme Rainbow level I parametersets broken

Out-of-bounds read when opening multiple column families with TTL

sodiumoxide is deprecated

Post-Quantum Key Encapsulation Mechanism SIKE broken

Use of uninitialized memory in temporary

Improper validation of Windows paths could lead to directory traversal attack

malicious crate rustdecimal

Unsoundness of AtomicCell<64> arithmetics on 32-bit targets that support Atomic64

sass-rs has been deprecated

project abandoned

Denial of service on deeply nested fragment requests

term_size is unmaintained; use terminal_size instead

Denial of service on deeply nested fragment requests

project abandoned

Multiple soundness issues in owning_ref

Unbounded memory allocation based on untrusted length

Safety issues in pkcs11

AES OCB fails to encrypt some bytes

Heap memory corruption with RSA private key operation

Stack overflow during recursive expression parsing

Panic due to improper UTF-8 indexing

MsQueue push/pop use the wrong orderings

Use after free in Neon external buffers

Resource leakage when decoding certificates and keys

OCSP_basic_verify may incorrectly verify the response signing certificate

Incorrect MAC key used in the RC4-MD5 ciphersuite

double-checked-cell is unmaintained

static_type_map has been renamed to erased_set

Channel creates zero value of any type

SegQueue creates zero value of any type

Parser creates invalid uninitialized value

SegQueue creates zero value of any type

Timing attack

array! macro is unsound when its length is impure constant

Use after free with externrefs and epoch interruption in Wasmtime

pty is unmaintained

Infinite loop in BN_mod_sqrt() reachable when parsing certificates

Regexes with large repetitions on empty sub-expressions take a very long time to parse

Arrow2 allows double free in safe code

Miscomputation when performing AES encryption in rust-crypto

enum_map macro can cause UB when Enum trait is incorrectly implemented

tokio-proto is deprecated/unmaintained

Failure to verify the public key of a SignedEnvelope against the PeerId in a PeerRecord

Delegate functions are missing Send bound

Data race in Iter and IterMut

A malicious coder can get unsound access to TCell or TLCell memory

crate has been renamed to ftdi-embedded-hal

Stack overflow in rustc_serialize when parsing deeply nested JSON

array! macro is unsound in presence of traits that implement methods it calls internally

Time-of-check time-of-use race condition can allow attacker to delete files they do not have access to delete

Space bug in clean_text

Unsoundness in dashmap references

lmdb is unmaintained, use lmdb-rkv instead

rental is unmaintained, author has moved on

Threshold value is ignored (all shares are n=3)

cargo-download is unmaintained

Integer overflow in the bundled Brotli C library

Integer overflow in the bundled Brotli C library

Use after free in lru crate

Invalid handling of X509_verify_cert() internal errors in libssl

Incorrect Lifetime Bounds on Closures in rusqlite

serde_cbor is unmaintained

RustEmbed generated get method allows for directory traversal when reading files from disk

Panic on incorrect date input to simple_asn1

Data race when sending and receiving after closing a oneshot channel

Converting NSString to a String Truncates at Null Bytes

Generated code can read and write out of bounds in safe code

Non-aligned u32 read in Chacha20 encryption and decryption

Potential segfault in localtime_r invocations

abomonation transmutes &T to and from &[u8] without sufficient constraints

slice-deque is unmaintained

Out-of-bounds write in nix::unistd::getgrouplist

BinaryArray does not perform bound checks on reading values and offsets

DecimalArray does not perform bound checks on accessing values and offsets

FixedSizeBinaryArray does not perform bound checks on accessing values and offsets

#[zeroize(drop)] doesn't implement Drop for enums

Aliased mutable references from tls_rand & TlsWyRand

Read on uninitialized buffer may cause UB ('tectonic_xdv' crate)

Memory Safety Issue when using patch or merge on state and assign the result back to state

AtomicBucket unconditionally implements Send/Sync

Multiple Vulnerabilities in Wasmtime

Improper Synchronization and Race Condition in vm-memory

Remote memory exhaustion in ckb

Miner fails to get block template when a cell used as a cell dep has been destroyed.

Process crashes when the cell used as DepGroup is not alive

Uncontrolled Search Path Element in sharkdp/bat

Miscomputed results when using AVX2 backend

Partial read is incorrect in molecule

Observable Discrepancy in libsecp256k1-rs

Relative Path Traversal in git-delta

Permissions bypass in pleaser

File exposure in pleaser

Permissions bypass in pleaser

Crate has been renamed to cosmrs

Read buffer overruns processing ASN.1 strings

SM2 Decryption Buffer Overflow

spirv_headers is unmaintained, use spirv instead

Deserialization functions pass uninitialized memory to user-provided Read

'Read' on uninitialized memory may cause UB

mopa is technically unsound

Reading on uninitialized buffer may cause UB ( gfx_auxil::read_spirv() )

Optional Deserialize implementations lacking validation

Data race in crossbeam-deque

vec-const attempts to construct a Vec from a pointer to a const slice

Reading on uninitialized memory may cause UB ( util::read_spv() )

QueryInterface should call AddRef before returning pointer

columnar: Read on uninitialized buffer may cause UB (ColumnarReadExt::read_typed_vec())

Read on uninitialized buffer may cause UB ( read_entry() )

Window can read out of bounds if Read instance returns more bytes than buffer size

Read on uninitialized buffer can cause UB (impl of ReadKVExt)

Read on uninitialized buffer in fill_buf() and read_up_to()

read on uninitialized buffer may cause UB (bite::read::BiteReadExpandedExt::read_framed_max)

InputStream::read_exact : Read on uninitialized buffer causes UB

Read on uninitialized memory may cause UB (fn preamble_skipcount())

Potential request smuggling capabilities due to lack of input validation

Lenient hyper header parsing of Content-Length could allow request smuggling

Integer overflow in hyper's parsing of the Transfer-Encoding header leads to data loss

Links in archive can create arbitrary directories

Improper Input Validation of octal literals in std::net

better-macro has deliberate RCE to prove a point

libsecp256k1 allows overflowing signatures

Flaw in FieldVar::mul_by_inverse allows unsound R1CS constraint systems

Conversion from prost_types::Timestamp to SystemTime can cause an overflow and panic

Task dropped in wrong thread when aborting LocalSet task

Incorrect handling of embedded SVG and MathML leads to mutation XSS

vec_deque::Iter has unsound Debug implementation

Double free in Vec::from_iter specialization when drop panics

API soundness issue in join() implementation of [Borrow<str>]

Insufficient synchronization in Arc::get_mut

MutexGuard<Cell<i32>> must not be Sync

grep-cli may run arbitrary executables on Windows

VecStorage Deserialize Allows Violation of Length Invariant

Soundness issue in iced-x86 versions <= 1.10.3

Memory access due to code generation flaw in Cranelift module

SMTP command injection in body

Denial of service on EVM execution due to memory over-allocation

anymap is unmaintained.

cpuid-bool has been renamed to cpufeatures

XSS in comrak

project abandoned; migrate to the aes-siv crate

aes-soft has been merged into the aes crate

aes-ctr has been merged into the aes crate

aesni has been merged into the aes crate

Null pointer deref in X509_issuer_and_serial_hash()

Integer overflow in CipherUpdate

NULL pointer deref in signature_algorithms processing

CA certificate check bypass with X509_V_FLAG_X509_STRICT

Archives may contain uninitialized memory

'merge_sort::merge()' crashes with double-free for T: Drop

String::retain allows safely creating invalid strings when abusing panic

TrustedRandomAccess specialization composes incorrectly for nested iter::Zips

Panic safety issue in Zip specialization

Zip may call __iterator_get_unchecked twice with the same index

Zip can cause buffer overflow when a consumed Zip iterator is used again

Logic bug in Read can cause buffer overflow in read_to_end()

VecDeque::make_contiguous may duplicate the contained elements

Panic safety violation in BinaryHeap

KeyValueReader passes uninitialized memory to Read instance

Multiple functions can cause double-frees

swap_index can write out of bounds and return uninitialized memory

StackVec::extend can write out of bounds when size_hint is incorrect

RingBuffer can create multiple mutable references and cause data races

ImmediateIO and TransactionalIO can cause data races

Data race and memory safety issue in Index

through and through_and causes a double free if the map function panics

SliceDeque::drain_filter can double drop an element if the predicate panics

Generators can cause data races if non-Send types are used in their generator functions

misc::vec_with_size() can drop uninitialized memory if clone panics

FromIterator implementation for Vector/Matrix can drop uninitialized memory

Use after free possible in uri::Formatter on panic

PartialReader passes uninitialized memory to user-provided Read

Multiple soundness issues in Ptr

insert_many can drop elements twice on panic

Denial of service through parsing payloads with too big exponent

panic safety: double drop or uninitialized drop of T upon panic

panic in user-provided Endian impl triggers double drop of T

Multiple memory safety issues

Fix a use-after-free bug in diesels Sqlite backend

rulinalg is unmaintained, use nalgebra instead

Intern: Data race allowed on T

quinn invalidly assumes the memory layout of std::net::SocketAddr

push_cloned can drop uninitialized memory or double free on panic

office is unmaintained, use calamine instead

Deserializing an array can drop uninitialized memory on panic

move_elements can double-free objects on panic

split_at allows obtaining multiple mutable references to the same data

Loading a bgzip block can write out of bounds if size overflows.

arr! macro erases lifetimes

Multiple memory safety issues in insert_row

Tape::take_bytes exposes uninitialized memory to a user-provided Read

Use-after-free when cloning a partially consumed Vec iterator

XSS in comrak

crate has been renamed to qjsonrpc

Incorrect check on buffer length when seeding RNGs

crate has been renamed to sn_api

Use-after-free in subscript_next and subscript_prev wrappers

nb-connect invalidly assumes the memory layout of std::net::SocketAddr

lzw is unmaintained

Multiple Transfer-Encoding headers misinterprets request payload

insert_slice_clone can double drop if Clone panics.

Multiple soundness issues

Queues allow non-Send types to be sent to other threads, allowing data races

Send bound needed on T (for Send impl of Bucket2)

MvccRwLock allows data races & aliasing violations

Read on uninitialized buffer may cause UB (impl Walue for Vec<u8>)

IoReader::read(): user-provided Read on uninitialized buffer may cause UB

FixedCapacityDequeLike::clone() can cause dropping uninitialized memory

Queue should have a Send bound on its Send/Sync traits

CopyCell lacks bounds on its Send trait allowing for data races

Send/Sync bound needed on T for Send/Sync impl of RcuCell

LockWeak<T> allows to create data race to T.

Bunch unconditionally implements Send/Sync

convec::ConVec unconditionally implements Send/Sync

ArcGuard's Send and Sync should have bounds on RC

Sectors::get accesses unclaimed/uninitialized memory

ShmWriter allows sending non-Send type across threads

Cache: Send/Sync impls needs trait bounds on K

Slock allows sending non-Send types across thread boundaries

SyncChannel can move 'T: !Send' to other threads

ReaderResult should be bounded by Sync

SyncRef's clone() and debug() allow data races

AtomicBox lacks bound on its Send and Sync traits allowing data races

dces' World type can cause data races

Shared can cause a data race

Record::read : Custom Read on uninitialized buffer may cause UB

Contents of uninitialized memory exposed in DeflateOutput's AsyncRead implementation

beef::Cow lacks a Sync bound on its Send trait allowing for data races

ReadTicket and WriteTicket should only be sendable when T is Send

AtomicBox implements Send/Sync for any T: Sized

Decoder<R> can carry R: !Send to other threads

PinSlab and Unordered<T, S> need bounds on their Send/Sync traits

Soundness issues in raw-cpuid

QueueSender/QueueReceiver: Send/Sync impls need T: Send

Future lacks bounds on Send and Sync.

Reading uninitialized memory can cause UB (Deserializer::read_vec)

Singleton lacks bounds on Send and Sync.

Demuxer can carry non-Send types across thread boundaries

stderr is unmaintained; use eprintln instead

ImageChunkMut needs bounds on its Send and Sync traits

panic safety issue in impl TransformContent<S, D> for [S; (2|3|4)]

Soundness issue: Input can be misused to create data race to an object

panic safety: double drop may happen within util::{mutate, mutate2}

EventList's From conversions can double drop on panic.

LateStatic has incorrect Sync bound

conquer-once's OnceCell lacks Send bound for its Sync trait.

hashconsing's HConsed lacks Send/Sync bound for its Send/Sync trait.

Queues allow non-Send types to be sent to other threads, allowing data races

reading on uninitialized buffer can cause UB (impl<R> BufRead for GreedyAccessReader<R>)

Update unsound DrainFilter and RString::retain

impl Random on arrays can lead to dropping uninitialized memory

AtomicOption should have Send + Sync bound on its type argument.

may_queue's Queue lacks Send/Sync bound for its Send/Sync trait.

ButtplugFutureStateShared allows data race to (!Send|!Sync) objects

Aovec lacks bound on its Send and Sync traits allowing data races

Exposes internally used raw pointer

Frame::copy_from_raw_parts can lead to segfault without unsafe

Double free when calling sys_info::disk_info from multiple threads

Double drop upon panic in 'fn map_array()'

Soundness issue with base::Error

TreeFocus lacks bounds on its Send and Sync traits

Missing Send bound for Lazy

UsbContext trait did not require implementers to be Send and Sync.

Buffer overflow in SmallVec::insert_many

interfaces2 is unmaintained, use interfaces instead

difference is unmaintained

Unsound: can make ARefss contain a !Send, !Sync object.

XSS in mdBook's search page

Async-h1 request smuggling possible with long unread bodies

Send/Sync bound needed on V in impl Send/Sync for ARCache<K, V>

Dangling reference in access::Map with Constant

nanorand 0.5.0 - RNGs failed to generate properly for non-64-bit numbers

Thex allows data races of non-Send types across threads

MPMCConsumer/Producer allows sending non-Send type across threads

crate has been renamed to sn_node

crate has been renamed to sn_client

TryMutex allows sending non-Send type across threads

crate has been superseded by sn_client

crate has been superseded by sn_client

ordered_float:NotNan may contain NaN after panic in assignment operators

memmap is unmaintained

mio invalidly assumes the memory layout of std::net::SocketAddr

crate has been renamed to sn_routing

net2 invalidly assumes the memory layout of std::net::SocketAddr

miow invalidly assumes the memory layout of std::net::SocketAddr

socket2 invalidly assumes the memory layout of std::net::SocketAddr

Unexpected panic when decoding tokens

Reference counting error in From<Py<T>>

Mutable reference with immutable provenance

Potential segfault in the time crate

GenericMutexGuard allows data races of non-Sync types across threads

Some lock_api lock guard objects can cause data races

Argument injection in sendmail transport

Unexpected panic in multihash from_slice parsing code

crate has been renamed to sn_fake_clock

crate has been renamed to qp2p

crate has been renamed to sn_bindgen

crate has been renamed to safe-nd

crate has been renamed to sn_ffi_utils

Improper Sync implementation on FuturesUnordered in futures-utils can cause data corruption

futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer

futures_task::waker may cause a use-after-free if used on a type that isn't 'static

MutexGuard::map can cause a data race in safe code

stdweb is unmaintained

crate has been renamed to cipher

crate has been renamed to cipher

Fix for UB in failure to catch panics crossing FFI boundaries

Use-after-free with objects returned by Stream's get_format_info and get_context methods

Possible use-after-free with proplist::Iterator

Undefined Behavior in bounded channel

tiberius is unmaintained

tempdir crate has been deprecated; use tempfile instead

crust repo has been archived; use libp2p instead

Obsolete versions of the rustsec crate do not support the new V3 advisory format

quickersort is deprecated and unmaintained

Unaligned memory access

Integer overflow leads to heap-based buffer overflow in encode_config_buf

traitobject assumes the layout of fat pointers

use-after or double free of allocated memory

stb_truetype crate has been deprecated; use ttf-parser instead

LocalRequest::clone creates multiple mutable references to the same object

Malicious input could cause uninitialized memory to be exposed

Improper uniqueness verification of signature threshold

Use-after-free in buffer conversion implementation

Lifetime boundary for raw_slice and raw_slice_mut are incorrect

Compiler optimisation for next_with_timeout in pnet::transport::IcmpTransportChannelIterator flaws to SEGFAULT

Multiple security issues including data race, buffer overflow, and uninitialized memory drop

HTTP download and execution allows MitM RCE

SSL/TLS MitM vulnerability due to insecure defaults

Use after free in CMS Signing

Incorrect implementation of the Streebog hash functions

Multiple memory safety issues

Test advisory with associated example crate

Processing of maliciously crafted length fields causes memory allocation SIGABRTs

Hostname verification skipped when custom root certs used

HMAC-BLAKE2 algorithms compute incorrect results

Multiple soundness issues in Chunk and InlineArray

Flaw in realloc allows reading unknown memory

linked-hash-map creates uninitialized NonNull pointer

CBox API allows to de-reference raw pointers without unsafe code

Unchecked vector pre-allocation

Failure to properly verify ed25519 signatures makes any signature valid

lz4-compress is unmaintained

tokio-rustls reads may cause excessive memory usage

Matrix::new() drops uninitialized memory

Flaw in offset_of and span_of causes SIGILL, drops uninitialized memory of arbitrary type on panic in client code

Cloned interners may read already dropped strings

Large cookie Max-Age values can cause a denial of service

read_scalar and read_scalar_at allow transmuting values without unsafe blocks

Unsound impl Follow for bool

Uncontrolled recursion leads to abort in HTML serialization

bespoke Cell implementation allows obtaining several mutable references to the same data

ChaCha20 counter overflow can expose repetitions in the keystream

Insufficient size checks in outgoing buffer in ws allows remote attacker to run the process out of memory

Uncontrolled recursion leads to abort in deserialization

Missing sanitization in mozwire allows local file overwrite of files ending in .conf

Obstack generates unaligned references

sigstack allocation bug can cause memory corruption or leak

index() allows out-of-bound read and remove() has off-by-one error

VecCopy allows misaligned access to elements

Use after free in ArcIntern::drop

fake-static allows converting any reference into a 'static reference

libusb is unmaintained; use rusb instead

Chunk API does not respect align requirement

Flaw in interface may drop uninitialized instance of arbitrary types

MsQueue and SegQueue suffer from double-free

Misbehaving HandleLike implementation can lead to memory safety violation

scalarmult() vulnerable to degenerate public keys

generichash::Digest::eq always return true

rust-crypto is unmaintained; switch to a modern alternative

Out of Memory in stream::read_raw_bytes_into()

Internally mutating methods take immutable ref self

net2 crate has been deprecated; use socket2 instead

Panic during initialization of Lazy might trigger undefined behavior

Memory safety issues in compact::Vec

StrcCtx deallocates a memory region that it doesn't own

Flaw in Scalar::check_overflow allows side-channel timing attack

Use-after-free in BodyStream due to lack of pinning

HTTP Request smuggling through malformed Transfer Encoding headers

Buffer overflow and format vulnerabilities in functions exposed without unsafe

crate has been renamed to block-cipher

Ozone contains several memory safety issues

Flaw in generativity allows out-of-bounds access

Vec-to-vec transmutations could lead to heap overflow/corruption

Stack overflow when parsing malicious DNS packet

Allows viewing and modifying arbitrary structs as bytes

Flaw in string parsing can lead to crashes due to invalid memory access.

Unsafe Send implementation in Atom allows data races

Missing check in ArrayVec leads to out-of-bounds write.

Enum repr causing potential memory corruption

cassandra crate is unmaintained; use cassandra-cpp instead

Stream callback function is not unwind safe

chan is end-of-life; use crossbeam-channel instead

failure is officially deprecated/unmaintained

Type confusion if private_get_type_id is overridden

bespoke Cell implementation allows obtaining several mutable references to the same data

HeaderMap::Drain API is unsound

Integer Overflow in HeaderMap::reserve() can cause Denial of Service

Flaw in streaming state reset() functions can create incorrect results.

Use-after-free in Framed due to lack of pinning

Relies on undefined behavior of char::from_u32_unchecked

HTTPS MitM vulnerability due to lack of hostname verification

headers containing newline characters can split messages

Flaw in hyper allows request smuggling by sending a body in GET requests

rio allows a use-after-free buffer access when a future is leaked

Various memory safety issues

Crash causing Denial of Service attack

array_queue pop_back() may cause a use-after-free

Uncontrolled recursion leads to abort in deserialization

Possible double free during unwinding in SmallVec::insert_many

smallvec creates uninitialized value of any type

Double-free and use-after-free in SmallVec::grow()

Memory corruption in SmallVec::grow()

bigint is unmaintained, use uint instead

Bug in SliceDeque::move_head_unchecked allows read of corrupted memory

Bug in SliceDeque::move_head_unchecked corrupts its memory

Format string vulnerabilities in pancurses

MultiDecoder::read() drops uninitialized memory of arbitrary type on panic in client code

Wrong memory orderings in RwLock potentially violates mutual exclusion

Parsing a specially crafted message can result in a stack overflow

Links in archives can overwrite any existing file

rust_sodium is unmaintained; switch to a modern alternative

Flaw in CBOR deserializer allows stack overflow

Stack overflow when resolving additional records from MX or SRV null targets

Library exclusively intended to obfuscate code.

fix unsound APIs that could lead to UB

An integer underflow could lead to panic

term is looking for a new maintainer

Matrix::zip_elements causes double free

Buffer overflow vulnerability in str::repeat()

Buffer overflow vulnerability in VecDeque::reserve()

Memory safety vulnerabilities arising from Error::type_id

Uncontrolled search path element vulnerability in rustdoc plugins

Cargo prior to Rust 1.26.0 may download the wrong dependency