Reported

October 8, 2019

Issued

October 1, 2020 (last modified: November 5, 2022)

Package

rustsec-example-crate (crates.io)

Type

Vulnerability

References

• https://github.com/RustSec/advisory-db/issues/158

Patched

• >=1.0.0

Unaffected

• <0.0.1

Description

This is a test advisory useful for verifying RustSec tooling and vulnerability detection pipelines are working correctly. Aside from the fact that it is filed against an example crate, it is otherwise considered by the Advisory Database itself to be a normal security advisory.

It's filed against rustsec-example-crate, an otherwise completely empty crate with no functionality or code, which has three releases:

• v0.0.0 - unaffected by this advisory (but yanked from crates.io)
• v0.0.1 - vulnerable according to this advisory
• v1.0.0 - patched by this advisory

Advisory available under CC0-1.0 license.