Categories ⋅ Keywords ⋅ Packages Advisories in category 'memory-corruption' December 5, 2024 RUSTSEC-2024-0409: Vulnerability in pyo3 Build corruption when using PYO3_CONFIG_FILE environment variable October 14, 2024 RUSTSEC-2024-0378: Vulnerability in pyo3 Risk of use-after-free in borrowed reads from Python weak references October 9, 2024 RUSTSEC-2024-0377: Vulnerability in dbn Heap Buffer overflow using c_chars_to_str function September 22, 2024 RUSTSEC-2024-0374: Vulnerability in ouch Segmentation fault due to use of uninitialized memory July 8, 2024 RUSTSEC-2024-0347: Vulnerability in zerovec Incorrect usage of #[repr(packed)] July 8, 2024 RUSTSEC-2024-0346: Vulnerability in zerovec-derive Incorrect usage of #[repr(packed)] March 6, 2024 RUSTSEC-2024-0021: Vulnerability in eyre Parts of Report are dropped as the wrong type during downcast March 5, 2024 RUSTSEC-2024-0020: Vulnerability in whoami Stack buffer overflow with whoami on several Unix platforms March 1, 2024 RUSTSEC-2024-0018: Vulnerability in crayon ObjectPool creates uninitialized memory when freeing objects February 28, 2024 INFO RUSTSEC-2024-0017: Unsoundness in cassandra-cpp Non-idiomatic use of iterators leads to use after free February 19, 2024 RUSTSEC-2024-0016: Vulnerability in libdav1d-sys dav1d AV1 decoder integer overflow February 17, 2024 RUSTSEC-2023-0080: Vulnerability in transpose Buffer overflow due to integer overflow in transpose February 9, 2024 HIGH RUSTSEC-2024-0013: Vulnerability in libgit2-sys Memory corruption, denial of service, and arbitrary code execution in libgit2 January 13, 2024 MEDIUM RUSTSEC-2024-0002: Unsoundness in vmm-sys-util serde deserialization for FamStructWrapper lacks bound checks that could potentially lead to out-of-bounds memory access January 13, 2024 INFO RUSTSEC-2023-0078: Unsoundness in tracing Potential stack use-after-free in Instrumented::into_inner November 28, 2023 INFO RUSTSEC-2023-0072: Unsoundness in openssl openssl X509StoreRef::objects is unsound September 13, 2023 RUSTSEC-2023-0061: Vulnerability in libwebp-sys libwebp: OOB write in BuildHuffmanTable September 13, 2023 RUSTSEC-2023-0060: Vulnerability in libwebp-sys2 libwebp: OOB write in BuildHuffmanTable August 24, 2023 RUSTSEC-2023-0054: Vulnerability in mail-internals Use-after-free in vec_insert_bytes June 21, 2023 INFO RUSTSEC-2023-0045: Unsoundness in memoffset memoffset allows reading uninitialized memory April 13, 2023 INFO RUSTSEC-2023-0033: Unsoundness in borsh Parsing borsh messages with ZST which are not-copy/clone is unsound April 6, 2023 INFO RUSTSEC-2023-0032: Unsoundness in ntru Unsound FFI: Wrong API usage causes write past allocated area March 22, 2023 INFO RUSTSEC-2022-0092: Unsoundness in rmp-serde rmp-serde Raw and RawRef unsound March 19, 2023 RUSTSEC-2023-0021: Vulnerability in stb_image NULL pointer dereference in stb_image March 12, 2023 INFO RUSTSEC-2021-0152: Unsoundness in out-reference out_reference::Out::from_raw should be unsafe March 4, 2023 INFO RUSTSEC-2023-0017: Unsoundness in maligned maligned::align_first causes incorrect deallocation February 25, 2023 INFO RUSTSEC-2023-0015: Unsoundness in ascii Ascii allows out-of-bounds array indexing in safe code February 9, 2023 MEDIUM RUSTSEC-2020-0167: Vulnerability in pnet_packet pnet_packet buffer overrun in set_payload setters January 15, 2023 RUSTSEC-2022-0079: Vulnerability in elf_rs ELF header parsing library doesn't check for valid offset January 14, 2023 INFO RUSTSEC-2022-0078: Unsoundness in bumpalo Use-after-free due to a lifetime error in Vec::into_iter() January 12, 2023 HIGH RUSTSEC-2022-0076: Vulnerability in wasmtime Bug in Wasmtime implementation of pooling instance allocator December 7, 2022 INFO RUSTSEC-2022-0070: Unsoundness in secp256k1 Unsound API in secp256k1 allows use-after-free and invalid deallocation from safe code October 30, 2022 HIGH RUSTSEC-2022-0063: Vulnerability in linked_list_allocator Multiple vulnerabilities resulting in out-of-bounds writes August 31, 2022 INFO RUSTSEC-2020-0165: Unsoundness in mozjpeg mozjpeg DecompressScanlines::read_scanlines is Unsound August 31, 2022 INFO RUSTSEC-2020-0164: Unsoundness in cell-project cell-project used incorrect variance when projecting through &Cell<T> August 27, 2022 INFO RUSTSEC-2022-0052: Unsoundness in os_socketaddr os_socketaddr invalidly assumes the memory layout of std::net::SocketAddr August 26, 2022 CRITICAL RUSTSEC-2022-0051: Vulnerability in lz4-sys Memory corruption in liblz4 August 11, 2022 RUSTSEC-2022-0046: Vulnerability in rocksdb Out-of-bounds read when opening multiple column families with TTL August 4, 2022 INFO RUSTSEC-2022-0041: Unsoundness in crossbeam-utils Unsoundness of AtomicCell<64> arithmetics on 32-bit targets that support Atomic64 August 2, 2022 RUSTSEC-2022-0040: Vulnerability in owning_ref Multiple soundness issues in owning_ref July 25, 2022 INFO RUSTSEC-2022-0034: Unsoundness in pkcs11 Safety issues in pkcs11 June 8, 2022 RUSTSEC-2022-0029: Vulnerability in crossbeam MsQueue push/pop use the wrong orderings May 23, 2022 RUSTSEC-2022-0028: Vulnerability in neon Use after free in Neon external buffers April 27, 2022 INFO RUSTSEC-2022-0017: Unsoundness in array-macro array! macro is unsound when its length is impure constant March 31, 2022 RUSTSEC-2022-0016: Vulnerability in wasmtime Use after free with externrefs and epoch interruption in Wasmtime March 4, 2022 RUSTSEC-2022-0012: Vulnerability in arrow2 Arrow2 allows double free in safe code February 18, 2022 INFO RUSTSEC-2022-0010: Unsoundness in enum-map enum_map macro can cause UB when Enum trait is incorrectly implemented February 4, 2022 INFO RUSTSEC-2022-0008: Unsoundness in windows Delegate functions are missing Send bound January 24, 2022 RUSTSEC-2022-0006: Vulnerability in thread_local Data race in Iter and IterMut January 21, 2022 INFO RUSTSEC-2020-0161: Unsoundness in array-macro array! macro is unsound in presence of traits that implement methods it calls internally January 13, 2022 RUSTSEC-2022-0002: Vulnerability in dashmap Unsoundness in dashmap references December 21, 2021 RUSTSEC-2021-0132: Vulnerability in compu-brotli-sys Integer overflow in the bundled Brotli C library December 21, 2021 RUSTSEC-2021-0131: Vulnerability in brotli-sys Integer overflow in the bundled Brotli C library December 21, 2021 RUSTSEC-2021-0130: Vulnerability in lru Use after free in lru crate December 9, 2021 RUSTSEC-2021-0128: Vulnerability in rusqlite Incorrect Lifetime Bounds on Closures in rusqlite November 17, 2021 RUSTSEC-2021-0124: Vulnerability in tokio Data race when sending and receiving after closing a oneshot channel October 18, 2021 RUSTSEC-2020-0159: Vulnerability in chrono Potential segfault in localtime_r invocations September 30, 2021 RUSTSEC-2021-0119: Vulnerability in nix Out-of-bounds write in nix::unistd::getgrouplist September 18, 2021 RUSTSEC-2021-0113: Vulnerability in metrics-util AtomicBucket unconditionally implements Send/Sync September 18, 2021 RUSTSEC-2021-0111: Vulnerability in tremor-script Memory Safety Issue when using patch or merge on state and assign the result back to state September 17, 2021 MEDIUM RUSTSEC-2021-0110: Vulnerability in wasmtime Multiple Vulnerabilities in Wasmtime September 10, 2021 HIGH RUSTSEC-2020-0157: Vulnerability in vm-memory Improper Synchronization and Race Condition in vm-memory August 21, 2021 RUSTSEC-2021-0089: Vulnerability in raw-cpuid Optional Deserialize implementations lacking validation August 21, 2021 RUSTSEC-2021-0083: Vulnerability in derive-com-impl QueryInterface should call AddRef before returning pointer August 21, 2021 CRITICAL RUSTSEC-2021-0093: Vulnerability in crossbeam-deque Data race in crossbeam-deque August 21, 2021 INFO RUSTSEC-2021-0082: Unsoundness in vec-const vec-const attempts to construct a Vec from a pointer to a const slice August 21, 2021 INFO RUSTSEC-2021-0095: Unsoundness in mopa mopa is technically unsound July 8, 2021 RUSTSEC-2021-0072: Vulnerability in tokio Task dropped in wrong thread when aborting LocalSet task July 6, 2021 CVE-2021-31162: Vulnerability in std Double free in Vec::from_iter specialization when drop panics June 6, 2021 RUSTSEC-2021-0070: Vulnerability in nalgebra VecStorage Deserialize Allows Violation of Length Invariant May 22, 2021 HIGH RUSTSEC-2021-0067: Vulnerability in cranelift-codegen Memory access due to code generation flaw in Cranelift module April 15, 2021 RUSTSEC-2021-0053: Vulnerability in algorithmica 'merge_sort::merge()' crashes with double-free for T: Drop April 13, 2021 CVE-2021-28876: Vulnerability in std Panic safety issue in Zip specialization April 13, 2021 CVE-2020-36317: Vulnerability in std String::retain allows safely creating invalid strings when abusing panic April 13, 2021 CVE-2021-28877: Vulnerability in std TrustedRandomAccess specialization composes incorrectly for nested iter::Zips April 13, 2021 CVE-2021-28875: Vulnerability in std Logic bug in Read can cause buffer overflow in read_to_end() April 13, 2021 CVE-2020-36318: Vulnerability in std VecDeque::make_contiguous may duplicate the contained elements April 13, 2021 CVE-2015-20001: Vulnerability in std Panic safety violation in BinaryHeap April 13, 2021 CVE-2021-28879: Vulnerability in std Zip can cause buffer overflow when a consumed Zip iterator is used again April 13, 2021 CVE-2021-28878: Vulnerability in std Zip may call __iterator_get_unchecked twice with the same index April 2, 2021 RUSTSEC-2021-0052: Vulnerability in id-map Multiple functions can cause double-frees March 30, 2021 MEDIUM RUSTSEC-2020-0150: Vulnerability in disrustor RingBuffer can create multiple mutable references and cause data races March 30, 2021 MEDIUM RUSTSEC-2020-0151: Vulnerability in generator Generators can cause data races if non-Send types are used in their generator functions March 30, 2021 MEDIUM RUSTSEC-2020-0149: Vulnerability in appendix Data race and memory safety issue in Index March 30, 2021 HIGH RUSTSEC-2021-0047: Vulnerability in slice-deque SliceDeque::drain_filter can double drop an element if the predicate panics March 30, 2021 MEDIUM RUSTSEC-2020-0152: Vulnerability in max7301 ImmediateIO and TransactionalIO can cause data races March 30, 2021 HIGH RUSTSEC-2021-0048: Vulnerability in stackvector StackVec::extend can write out of bounds when size_hint is incorrect March 30, 2021 CRITICAL RUSTSEC-2021-0049: Vulnerability in through through and through_and causes a double free if the map function panics March 29, 2021 CRITICAL RUSTSEC-2021-0046: Vulnerability in telemetry misc::vec_with_size() can drop uninitialized memory if clone panics March 29, 2021 CRITICAL RUSTSEC-2021-0045: Vulnerability in adtensor FromIterator implementation for Vector/Matrix can drop uninitialized memory March 26, 2021 HIGH RUSTSEC-2021-0042: Vulnerability in insert_many insert_many can drop elements twice on panic March 26, 2021 HIGH RUSTSEC-2021-0044: Unsoundness in rocket Use after free possible in uri::Formatter on panic March 26, 2021 MEDIUM RUSTSEC-2020-0148: Vulnerability in cgc Multiple soundness issues in Ptr March 7, 2021 HIGH RUSTSEC-2021-0040: Vulnerability in arenavec panic safety: double drop or uninitialized drop of T upon panic March 7, 2021 HIGH RUSTSEC-2021-0039: Vulnerability in endian_trait panic in user-provided Endian impl triggers double drop of T March 5, 2021 CRITICAL RUSTSEC-2021-0037: Vulnerability in diesel Fix a use-after-free bug in diesels Sqlite backend March 3, 2021 CRITICAL RUSTSEC-2021-0033: Vulnerability in stack_dst push_cloned can drop uninitialized memory or double free on panic March 2, 2021 CRITICAL RUSTSEC-2021-0030: Vulnerability in scratchpad move_elements can double-free objects on panic March 2, 2021 CRITICAL RUSTSEC-2021-0031: Vulnerability in nano_arena split_at allows obtaining multiple mutable references to the same data March 2, 2021 CRITICAL RUSTSEC-2021-0032: Vulnerability in byte_struct Deserializing an array can drop uninitialized memory on panic March 1, 2021 CRITICAL RUSTSEC-2021-0027: Vulnerability in bam Loading a bgzip block can write out of bounds if size overflows. March 1, 2021 RUSTSEC-2021-0028: Vulnerability in toodee Multiple memory safety issues in insert_row March 1, 2021 HIGH RUSTSEC-2020-0146: Vulnerability in generic-array arr! macro erases lifetimes February 27, 2021 HIGH RUSTSEC-2020-0145: Unsoundness in heapless Use-after-free when cloning a partially consumed Vec iterator February 15, 2021 CRITICAL RUSTSEC-2021-0022: Vulnerability in yottadb Use-after-free in subscript_next and subscript_prev wrappers February 4, 2021 HIGH RUSTSEC-2020-0143: Vulnerability in multiqueue Queues allow non-Send types to be sent to other threads, allowing data races February 4, 2021 RUSTSEC-2021-0019: Vulnerability in xcb Multiple soundness issues February 4, 2021 MEDIUM RUSTSEC-2021-0018: Vulnerability in qwutils insert_slice_clone can double drop if Clone panics. February 2, 2021 HIGH RUSTSEC-2020-0142: Vulnerability in syncpool Send bound needed on T (for Send impl of Bucket2) February 1, 2021 HIGH RUSTSEC-2020-0141: Vulnerability in noise_search MvccRwLock allows data races & aliasing violations January 30, 2021 HIGH RUSTSEC-2020-0126: Vulnerability in signal-simple SyncChannel can move 'T: !Send' to other threads January 30, 2021 HIGH RUSTSEC-2020-0138: Vulnerability in lexer ReaderResult should be bounded by Sync January 30, 2021 HIGH RUSTSEC-2020-0129: Vulnerability in kekbit ShmWriter allows sending non-Send type across threads January 30, 2021 CRITICAL RUSTSEC-2020-0132: Vulnerability in array-tools FixedCapacityDequeLike::clone() can cause dropping uninitialized memory January 30, 2021 HIGH RUSTSEC-2020-0130: Vulnerability in bunch Bunch unconditionally implements Send/Sync January 30, 2021 HIGH RUSTSEC-2020-0125: Vulnerability in convec convec::ConVec unconditionally implements Send/Sync January 30, 2021 HIGH RUSTSEC-2020-0137: Vulnerability in lever AtomicBox lacks bound on its Send and Sync traits allowing data races January 30, 2021 HIGH RUSTSEC-2020-0139: Vulnerability in dces dces' World type can cause data races January 30, 2021 HIGH RUSTSEC-2020-0135: Vulnerability in slock Slock allows sending non-Send types across thread boundaries January 30, 2021 HIGH RUSTSEC-2020-0131: Vulnerability in rcu_cell Send/Sync bound needed on T for Send/Sync impl of RcuCell January 30, 2021 HIGH RUSTSEC-2020-0124: Vulnerability in async-coap ArcGuard's Send and Sync should have bounds on RC January 30, 2021 HIGH RUSTSEC-2020-0128: Vulnerability in cache Cache: Send/Sync impls needs trait bounds on K January 30, 2021 HIGH RUSTSEC-2020-0136: Vulnerability in toolshed CopyCell lacks bounds on its Send trait allowing for data races January 30, 2021 HIGH RUSTSEC-2020-0134: Vulnerability in parc LockWeak<T> allows to create data race to T. January 30, 2021 HIGH RUSTSEC-2020-0127: Vulnerability in v9 SyncRef's clone() and debug() allow data races January 30, 2021 CRITICAL RUSTSEC-2021-0015: Vulnerability in calamine Sectors::get accesses unclaimed/uninitialized memory January 30, 2021 HIGH RUSTSEC-2020-0133: Vulnerability in scottqueue Queue should have a Send bound on its Send/Sync traits January 26, 2021 HIGH RUSTSEC-2020-0122: Vulnerability in beef beef::Cow lacks a Sync bound on its Send trait allowing for data races January 25, 2021 HIGH RUSTSEC-2020-0119: Vulnerability in ticketed_lock ReadTicket and WriteTicket should only be sendable when T is Send January 25, 2021 HIGH RUSTSEC-2020-0120: Unsoundness in libsbc Decoder<R> can carry R: !Send to other threads January 25, 2021 HIGH RUSTSEC-2020-0121: Vulnerability in abox AtomicBox implements Send/Sync for any T: Sized January 24, 2021 RUSTSEC-2021-0013: Vulnerability in raw-cpuid Soundness issues in raw-cpuid January 24, 2021 HIGH RUSTSEC-2020-0116: Vulnerability in unicycle PinSlab and Unordered<T, S> need bounds on their Send/Sync traits January 24, 2021 HIGH RUSTSEC-2020-0118: Vulnerability in tiny_future Future lacks bounds on Send and Sync. January 24, 2021 HIGH RUSTSEC-2020-0117: Vulnerability in conqueue QueueSender/QueueReceiver: Send/Sync impls need T: Send January 22, 2021 HIGH RUSTSEC-2020-0115: Vulnerability in ruspiro-singleton Singleton lacks bounds on Send and Sync. January 21, 2021 MEDIUM RUSTSEC-2020-0114: Vulnerability in va-ts Demuxer can carry non-Send types across thread boundaries January 20, 2021 HIGH RUSTSEC-2020-0102: Vulnerability in late-static LateStatic has incorrect Sync bound January 20, 2021 HIGH RUSTSEC-2020-0105: Vulnerability in abi_stable Update unsound DrainFilter and RString::retain January 20, 2021 MEDIUM RUSTSEC-2020-0108: Vulnerability in eventio Soundness issue: Input can be misused to create data race to an object January 20, 2021 MEDIUM RUSTSEC-2020-0106: Unsoundness in multiqueue2 Queues allow non-Send types to be sent to other threads, allowing data races January 20, 2021 HIGH RUSTSEC-2020-0104: Vulnerability in gfwx ImageChunkMut needs bounds on its Send and Sync traits January 20, 2021 MEDIUM RUSTSEC-2020-0112: Vulnerability in buttplug ButtplugFutureStateShared allows data race to (!Send|!Sync) objects January 20, 2021 CRITICAL RUSTSEC-2021-0010: Vulnerability in containers panic safety: double drop may happen within util::{mutate, mutate2} January 20, 2021 HIGH RUSTSEC-2020-0101: Vulnerability in conquer-once conquer-once's OnceCell lacks Send bound for its Sync trait. January 20, 2021 HIGH RUSTSEC-2021-0011: Vulnerability in fil-ocl EventList's From conversions can double drop on panic. January 20, 2021 MEDIUM RUSTSEC-2020-0111: Vulnerability in may_queue may_queue's Queue lacks Send/Sync bound for its Send/Sync trait. January 20, 2021 MEDIUM RUSTSEC-2020-0113: Vulnerability in atomic-option AtomicOption should have Send + Sync bound on its type argument. January 20, 2021 HIGH RUSTSEC-2020-0103: Vulnerability in autorand impl Random on arrays can lead to dropping uninitialized memory January 20, 2021 HIGH RUSTSEC-2020-0107: Vulnerability in hashconsing hashconsing's HConsed lacks Send/Sync bound for its Send/Sync trait. January 20, 2021 HIGH RUSTSEC-2021-0009: Vulnerability in basic_dsp_matrix panic safety issue in impl TransformContent<S, D> for [S; (2|3|4)] January 19, 2021 HIGH RUSTSEC-2020-0099: Vulnerability in aovec Aovec lacks bound on its Send and Sync traits allowing data races January 19, 2021 HIGH RUSTSEC-2021-0006: Unsoundness in cache Exposes internally used raw pointer January 19, 2021 CRITICAL RUSTSEC-2020-0100: Vulnerability in sys-info Double free when calling sys_info::disk_info from multiple threads January 18, 2021 MEDIUM RUSTSEC-2020-0097: Unsoundness in xcb Soundness issue with base::Error January 18, 2021 HIGH RUSTSEC-2021-0005: Vulnerability in glsl-layout Double drop upon panic in 'fn map_array()' January 18, 2021 MEDIUM RUSTSEC-2021-0004: Vulnerability in lazy-init Missing Send bound for Lazy January 18, 2021 HIGH RUSTSEC-2020-0098: Unsoundness in rusb UsbContext trait did not require implementers to be Send and Sync. January 8, 2021 CRITICAL RUSTSEC-2021-0003: Vulnerability in smallvec Buffer overflow in SmallVec::insert_many January 6, 2021 MEDIUM RUSTSEC-2020-0094: Unsoundness in reffers Unsound: can make ARefss contain a !Send, !Sync object. December 11, 2020 HIGH RUSTSEC-2020-0091: Vulnerability in arc-swap Dangling reference in access::Map with Constant December 9, 2020 MEDIUM RUSTSEC-2020-0090: Vulnerability in thex Thex allows data races of non-Send types across threads November 18, 2020 INFO RUSTSEC-2020-0070: Unsoundness in lock_api Some lock_api lock guard objects can cause data races November 18, 2020 MEDIUM RUSTSEC-2020-0072: Unsoundness in futures-intrusive GenericMutexGuard allows data races of non-Sync types across threads November 18, 2020 MEDIUM RUSTSEC-2020-0071: Vulnerability in time Potential segfault in the time crate October 31, 2020 HIGH RUSTSEC-2020-0060: Vulnerability in futures-task futures_task::waker may cause a use-after-free if used on a type that isn't 'static October 31, 2020 MEDIUM RUSTSEC-2020-0062: Vulnerability in futures-util Improper Sync implementation on FuturesUnordered in futures-utils can cause data corruption October 25, 2020 INFO RUSTSEC-2019-0038: Unsoundness in libpulse-binding Fix for UB in failure to catch panics crossing FFI boundaries October 25, 2020 RUSTSEC-2018-0021: Vulnerability in libpulse-binding Use-after-free with objects returned by Stream's get_format_info and get_context methods October 22, 2020 MEDIUM RUSTSEC-2018-0020: Vulnerability in libpulse-binding Possible use-after-free with proplist::Iterator October 11, 2020 RUSTSEC-2020-0052: Vulnerability in crossbeam-channel Undefined Behavior in bounded channel October 1, 2020 CRITICAL RUSTSEC-2019-0021: Vulnerability in linea Matrix::zip_elements causes double free October 1, 2020 CRITICAL RUSTSEC-2019-0015: Vulnerability in compact_arena Flaw in generativity allows out-of-bounds access October 1, 2020 CRITICAL RUSTSEC-2020-0007: Vulnerability in bitvec use-after or double free of allocated memory October 1, 2020 CRITICAL RUSTSEC-2020-0027: Unsoundness in traitobject traitobject assumes the layout of fat pointers October 1, 2020 RUSTSEC-2018-0019: Vulnerability in actix-web Multiple memory safety issues October 1, 2020 RUSTSEC-2020-0034: Vulnerability in arr Multiple security issues including data race, buffer overflow, and uninitialized memory drop October 1, 2020 CRITICAL RUSTSEC-2019-0012: Vulnerability in smallvec Memory corruption in SmallVec::grow() October 1, 2020 CRITICAL RUSTSEC-2020-0004: Vulnerability in lucet-runtime-internals sigstack allocation bug can cause memory corruption or leak October 1, 2020 CRITICAL RUSTSEC-2020-0049: Vulnerability in actix-codec Use-after-free in Framed due to lack of pinning October 1, 2020 CRITICAL RUSTSEC-2020-0002: Vulnerability in prost Parsing a specially crafted message can result in a stack overflow October 1, 2020 MEDIUM RUSTSEC-2020-0046: Unsoundness in actix-service bespoke Cell implementation allows obtaining several mutable references to the same data October 1, 2020 MEDIUM RUSTSEC-2019-0037: Vulnerability in pnet Compiler optimisation for next_with_timeout in pnet::transport::IcmpTransportChannelIterator flaws to SEGFAULT October 1, 2020 HIGH RUSTSEC-2020-0048: Vulnerability in actix-http Use-after-free in BodyStream due to lack of pinning October 1, 2020 CRITICAL RUSTSEC-2020-0021: Vulnerability in rio rio allows a use-after-free buffer access when a future is leaked October 1, 2020 CRITICAL RUSTSEC-2018-0011: Vulnerability in arrayfire Enum repr causing potential memory corruption October 1, 2020 CRITICAL RUSTSEC-2020-0045: Unsoundness in actix-utils bespoke Cell implementation allows obtaining several mutable references to the same data October 1, 2020 CRITICAL RUSTSEC-2019-0022: Vulnerability in portaudio-rs Stream callback function is not unwind safe October 1, 2020 HIGH RUSTSEC-2020-0017: Vulnerability in internment Use after free in ArcIntern::drop October 1, 2020 CRITICAL RUSTSEC-2020-0005: Vulnerability in cbox CBox API allows to de-reference raw pointers without unsafe code October 1, 2020 CRITICAL RUSTSEC-2019-0034: Vulnerability in http HeaderMap::Drain API is unsound October 1, 2020 CRITICAL CVE-2018-1000810: Vulnerability in std Buffer overflow vulnerability in str::repeat() October 1, 2020 CVE-2019-12083: Vulnerability in std Memory safety vulnerabilities arising from Error::type_id