Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2016-0002 | HTTPS MitM vulnerability due to lack of hostname verification | 2016-05-09T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2016-0003 | HTTP download and execution allows MitM RCE | 2016-08-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2016-0005 | rust-crypto is unmaintained; switch to a modern alternative | 2016-09-06T12:00:00Z | 2022-01-09T20:07:15Z |
| rustsec-2016-0004 | libusb is unmaintained; use rusb instead | 2016-09-10T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2016-0001 | SSL/TLS MitM vulnerability due to insecure defaults | 2016-11-05T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2016-0006 | `cassandra` crate is unmaintained; use `cassandra-cpp` instead | 2016-12-15T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2017-0002 | headers containing newline characters can split messages | 2017-01-23T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2017-0001 | scalarmult() vulnerable to degenerate public keys | 2017-01-26T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2017-0003 | Hostname verification skipped when custom root certs used | 2017-03-15T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2017-0007 | lz4-compress is unmaintained | 2017-04-17T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2017-0004 | Integer overflow leads to heap-based buffer overflow in encode_config_buf | 2017-05-03T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2017-0005 | Large cookie Max-Age values can cause a denial of service | 2017-05-06T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2017-0008 | `serial` crate is unmaintained | 2017-07-02T12:00:00Z | 2024-12-04T13:14:28Z |
| rustsec-2017-0006 | Unchecked vector pre-allocation | 2017-11-21T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0017 | `tempdir` crate has been deprecated; use `tempfile` instead | 2018-02-13T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2018-0010 | Use after free in CMS Signing | 2018-06-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0019 | Multiple memory safety issues | 2018-06-08T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0021 | Use-after-free with objects returned by `Stream`'s `get_format_info` and `get_context` methods | 2018-06-15T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0001 | An integer underflow could lead to panic | 2018-06-21T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0002 | Links in archives can overwrite any existing file | 2018-06-29T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0016 | quickersort is deprecated and unmaintained | 2018-06-30T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2018-0003 | Possible double free during unwinding in SmallVec::insert_many | 2018-07-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0014 | chan is end-of-life; use crossbeam-channel instead | 2018-07-31T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2018-0022 | Use of uninitialized memory in temporary | 2018-08-22T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0004 | Malicious input could cause uninitialized memory to be exposed | 2018-08-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0005 | Uncontrolled recursion leads to abort in deserialization | 2018-09-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0006 | Uncontrolled recursion leads to abort in deserialization | 2018-09-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0018 | smallvec creates uninitialized value of any type | 2018-09-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0007 | Stack overflow when parsing malicious DNS packet | 2018-10-09T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2018-0015 | term is looking for a new maintainer | 2018-11-19T12:00:00Z | 2020-10-02T01:29:11Z |