Vulnerabilities > Rust Lang > Rust > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-08-07 CVE-2021-29922 Unspecified vulnerability in Rust-Lang Rust
library/std/src/net/parser.rs in Rust before 1.53.0 does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation.
network
low complexity
rust-lang
critical
9.1
2021-04-14 CVE-2021-31162 Double Free vulnerability in multiple products
In the standard library in Rust before 1.52.0, a double free can occur in the Vec::from_iter function if freeing the element panics.
network
low complexity
rust-lang fedoraproject CWE-415
critical
9.8
2021-04-11 CVE-2021-28879 Integer Overflow or Wraparound vulnerability in multiple products
In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow.
network
low complexity
rust-lang fedoraproject CWE-190
critical
9.8
2018-10-08 CVE-2018-1000810 Integer Overflow or Wraparound vulnerability in Rust-Lang Rust
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126.2, 126.1, 126.0 contains a CWE-680: Integer Overflow to Buffer Overflow vulnerability in standard library that can result in buffer overflow.
network
low complexity
rust-lang CWE-190
critical
9.8