Categories ⋅ Keywords ⋅ Packages Advisories in category 'code-execution' March 22, 2025 RUSTSEC-2025-0016: Vulnerability in pared Use after free in Parc and Prc due to missing lifetime constraints January 3, 2025 RUSTSEC-2024-0433: Vulnerability in age Malicious plugin names, recipients, or identities can cause arbitrary binary execution January 3, 2025 RUSTSEC-2024-0432: Vulnerability in rage Malicious plugin names, recipients, or identities can cause arbitrary binary execution September 7, 2024 MEDIUM RUSTSEC-2024-0371: Vulnerability in gix-path gix-path improperly resolves configuration path reported by Git July 18, 2024 MEDIUM RUSTSEC-2024-0355: Vulnerability in gix-path gix-path can use a fake program files location July 8, 2024 HIGH RUSTSEC-2024-0350: Vulnerability in gix-fs Traversal outside working tree enables arbitrary code execution July 8, 2024 HIGH RUSTSEC-2024-0348: Vulnerability in gix-index Traversal outside working tree enables arbitrary code execution July 8, 2024 HIGH RUSTSEC-2024-0349: Vulnerability in gix-worktree Traversal outside working tree enables arbitrary code execution April 13, 2024 RUSTSEC-2024-0335: Vulnerability in gix-transport gix-transport indirect code execution via malicious username February 9, 2024 HIGH RUSTSEC-2024-0013: Vulnerability in libgit2-sys Memory corruption, denial of service, and arbitrary code execution in libgit2 January 22, 2024 RUSTSEC-2024-0006: Vulnerability in shlex Multiple issues involving quote API September 25, 2023 RUSTSEC-2023-0064: Vulnerability in gix-transport gix-transport code execution vulnerability February 14, 2023 HIGH RUSTSEC-2022-0090: Vulnerability in libsqlite3-sys libsqlite3-sys via C SQLite CVE-2022-35737 November 1, 2022 RUSTSEC-2022-0064: Vulnerability in openssl-src X.509 Email Address 4-byte Buffer Overflow August 4, 2022 RUSTSEC-2022-0042: Vulnerability in rustdecimal malicious crate rustdecimal July 25, 2022 INFO RUSTSEC-2022-0034: Unsoundness in pkcs11 Safety issues in pkcs11 April 27, 2022 INFO RUSTSEC-2022-0017: Unsoundness in array-macro array! macro is unsound when its length is impure constant February 18, 2022 INFO RUSTSEC-2022-0010: Unsoundness in enum-map enum_map macro can cause UB when Enum trait is incorrectly implemented October 18, 2021 RUSTSEC-2020-0159: Vulnerability in chrono Potential segfault in localtime_r invocations September 9, 2021 HIGH RUSTSEC-2021-0106: Vulnerability in bat Uncontrolled Search Path Element in sharkdp/bat August 21, 2021 INFO RUSTSEC-2021-0095: Unsoundness in mopa mopa is technically unsound July 26, 2021 RUSTSEC-2021-0077: Vulnerability in better-macro better-macro has deliberate RCE to prove a point June 15, 2021 CRITICAL RUSTSEC-2021-0071: Vulnerability in grep-cli grep-cli may run arbitrary executables on Windows May 22, 2021 HIGH RUSTSEC-2021-0067: Vulnerability in cranelift-codegen Memory access due to code generation flaw in Cranelift module January 4, 2021 MEDIUM RUSTSEC-2021-0001: Vulnerability in mdbook XSS in mdBook's search page November 18, 2020 MEDIUM RUSTSEC-2020-0071: Vulnerability in time Potential segfault in the time crate November 11, 2020 MEDIUM RUSTSEC-2020-0069: Vulnerability in lettre Argument injection in sendmail transport October 31, 2020 HIGH RUSTSEC-2020-0060: Vulnerability in futures-task futures_task::waker may cause a use-after-free if used on a type that isn't 'static October 1, 2020 CRITICAL RUSTSEC-2019-0022: Vulnerability in portaudio-rs Stream callback function is not unwind safe October 1, 2020 CRITICAL RUSTSEC-2019-0012: Vulnerability in smallvec Memory corruption in SmallVec::grow() October 1, 2020 CVE-2018-1000657: Vulnerability in std Buffer overflow vulnerability in VecDeque::reserve() October 1, 2020 HIGH CVE-2018-1000622: Vulnerability in rustdoc Uncontrolled search path element vulnerability in rustdoc plugins