Vulnerabilities > Rust Lang
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-04-11 | CVE-2021-28879 | Integer Overflow or Wraparound vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. | 9.8 |
2021-04-11 | CVE-2021-28878 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are used together. | 7.5 |
2021-04-11 | CVE-2021-28877 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Rust-Lang Rust In the standard library in Rust before 1.51.0, the Zip implementation calls __iterator_get_unchecked() for the same index more than once when nested. | 7.5 |
2021-04-11 | CVE-2021-28876 | Improper Handling of Exceptional Conditions vulnerability in multiple products In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. | 5.3 |
2021-04-11 | CVE-2021-28875 | Unchecked Return Value vulnerability in Rust-Lang Rust In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. | 7.5 |
2021-04-11 | CVE-2020-36318 | Use After Free vulnerability in Rust-Lang Rust 1.48.0 In the standard library in Rust before 1.49.0, VecDeque::make_contiguous has a bug that pops the same element more than once under certain condition. | 7.5 |
2021-04-11 | CVE-2020-36317 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Rust-Lang Rust In the standard library in Rust before 1.49.0, String::retain() function has a panic safety problem. | 5.0 |
2021-01-04 | CVE-2020-26297 | Cross-site Scripting vulnerability in Rust-Lang Mdbook mdBook is a utility to create modern online books from Markdown files and is written in Rust. | 4.3 |
2020-12-31 | CVE-2020-35920 | Unspecified vulnerability in Rust-Lang Socket2 An issue was discovered in the socket2 crate before 0.3.16 for Rust. | 2.1 |
2020-12-31 | CVE-2020-35908 | Unspecified vulnerability in Rust-Lang Future-Utils An issue was discovered in the futures-util crate before 0.3.2 for Rust. | 2.1 |