Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9b9ceb7a by Moritz Muehlenhoff at 2023-09-12T11:01:14+02:00 rust-inventory n/a - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,13 @@ +CVE-2023-XXXX [RUSTSEC-2023-0058: Exposes reference to non-Sync data to an arbitrary thread] + - rust-inventory <not-affected> (Fixed before initial upload to the archive) + NOTE: https://github.com/dtolnay/inventory/commit/762b5ce107a9f0d80121e614cad2d33c89c88584 (0.2.0) + NOTE: https://github.com/dtolnay/inventory/pull/42 + NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0058.html +CVE-2023-XXXX [RUSTSEC-2023-0057: Fails to prohibit standard library access prior to initialization of Rust standard library runtime] + - rust-inventory <not-affected> (Fixed before initial upload to the archive) + NOTE: https://github.com/dtolnay/inventory/commit/b499293ff75e4f65e8cdcb50280a9247d8df814a (0.2.0) + NOTE: https://github.com/dtolnay/inventory/pull/43 + NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0057.html CVE-2023-4899 (SQL Injection in GitHub repository mintplex-labs/anything-llm prior to ...) TODO: check CVE-2023-4898 (Authentication Bypass by Primary Weakness in GitHub repository mintple ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b9ceb7aad4b9be054d171bcfdb14b805cad8eb7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b9ceb7aad4b9be054d171bcfdb14b805cad8eb7 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
