[Git][security-tracker-team/security-tracker][master] rust-inventory n/a

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9b9ceb7a by Moritz Muehlenhoff at 2023-09-12T11:01:14+02:00
rust-inventory n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,13 @@
+CVE-2023-XXXX [RUSTSEC-2023-0058: Exposes reference to non-Sync data to an arbitrary thread]
+	- rust-inventory <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/dtolnay/inventory/commit/762b5ce107a9f0d80121e614cad2d33c89c88584 (0.2.0)
+	NOTE: https://github.com/dtolnay/inventory/pull/42
+	NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0058.html
+CVE-2023-XXXX [RUSTSEC-2023-0057: Fails to prohibit standard library access prior to initialization of Rust standard library runtime]
+	- rust-inventory <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/dtolnay/inventory/commit/b499293ff75e4f65e8cdcb50280a9247d8df814a (0.2.0)
+	NOTE: https://github.com/dtolnay/inventory/pull/43
+	NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0057.html
 CVE-2023-4899 (SQL Injection in GitHub repository mintplex-labs/anything-llm prior to ...)
 	TODO: check
 CVE-2023-4898 (Authentication Bypass by Primary Weakness in GitHub repository mintple ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b9ceb7aad4b9be054d171bcfdb14b805cad8eb7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b9ceb7aad4b9be054d171bcfdb14b805cad8eb7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230912/57608429/attachment.htm>