Vulnerability Library

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-5xgj-pmjj-gw49
  • crates.io/risc0-zkvm
 RISC Zero zkVM notes on zero-knowledge 12 hours ago
  • No fix available
GHSA-gh9f-6xm2-c4j2
  • crates.io/surrealdb
  • crates.io/surrealdb-core
 SurrealDB vulnerable to Improper Authentication when Changing Databases as Scope User 4 days ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-mjw4-jj88-v687
  • crates.io/phonenumber
 panic on parsing crafted phonenumber inputs 6 days ago
  • Fix available
  • Severity - 9.2 (Critical)
GHSA-74r5-g7vc-j2v2
  • crates.io/zerovec-derive
 zerovec-derive incorrectly uses `#[repr(packed)]` 08 Jul
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-xrv3-jmcp-374j
  • crates.io/zerovec
 zerovec incorrectly uses `#[repr(packed)]` 08 Jul
  • Fix available
  • Severity - 6.9 (Medium)
RUSTSEC-2024-0346
  • crates.io/zerovec-derive
 Incorrect usage of `#[repr(packed)]` 01 Jul
  • Fix available
RUSTSEC-2024-0347
  • crates.io/zerovec
 Incorrect usage of `#[repr(packed)]` 01 Jul
  • Fix available
GHSA-2xpx-vcmq-5f72
  • crates.io/ntpd
 Unlimited number of NTS-KE connections can crash ntpd-rs server 28 Jun
  • Fix available
  • Severity - 8.7 (High)
GHSA-9344-p847-qm5c
  • crates.io/sequoia-openpgp
 Low severity (DoS) vulnerability in sequoia-openpgp 26 Jun
  • Fix available
RUSTSEC-2024-0345
  • crates.io/sequoia-openpgp
 Low severity (DoS) vulnerability in sequoia-openpgp 26 Jun
  • Fix available
GHSA-x4gp-pqpj-f43q
  • crates.io/curve25519-dalek
 curve25519-dalek has timing variability in `curve25519-dalek`'s `Scalar29::sub`/`Scalar52::sub` 18 Jun
  • Fix available
RUSTSEC-2024-0344
  • crates.io/curve25519-dalek
 Timing variability in `curve25519-dalek`'s `Scalar29::sub`/`Scalar52::sub` 18 Jun
  • Fix available
GHSA-67fv-9r7g-432h
  • crates.io/rhai
 Rhai stack overflow vulenrability 13 Jun
  • No fix available
  • Severity - 8.7 (High)
GHSA-55f3-3qvg-8pv5
  • crates.io/wasmer
 Symlink bypasses filesystem sandbox 07 Jun
  • No fix available
  • Severity - 2.9 (Low)
GHSA-52xf-5p2m-9wrv
  • crates.io/s2n-tls
 s2n-tls has a potentially observable differences in RSA premaster secret handling 06 Jun
  • Fix available
GHSA-9hc7-6w9r-wj94
  • crates.io/nano-id
 Unable to generate the correct character set 04 Jun
  • Fix available
  • Severity - 9.4 (Critical)
Load more...