Search Vulnerabilities

ruint affected by unsoundness of safe `reciprocal_mg10`

Sequoia PGP has Subtraction Overflow when aes_key_unwrap function is provided ciphertext that is too short

sd changes the group ownership of the source file

Static Web Server vulnerable to a symbolic link path traversal

Critical Use-After-Free in Wasmi's Linear Memory

matrix-sdk-base denial of service via custom m.room.join_rules event values

nitro-tpm-pcr-compute may allow kernel command line modification by an account operator

libcrux incorrectly calculates on aarch64

maxminddb's `Reader::open_mmap` unsoundly marks unsafe memmap operation as safe

rtvm-interpreter lacks sufficient checks in public API

libnftnl has Heap-based Buffer Overflow in nftnl::Batch::with_page_size (nftnl-rs)

cggmp24 and cggmp21 are vulnerable to signature forgery through altered presignatures

cggmp21 has a missing check in the ZK proof used in CGGMP21

thread-amount Vulnerable to Resource Exhaustion (Memory and Handle Leaks) on Windows and macOS

sudo-rs doesn't record authenticating user properly in timestamp

Wasmtime provides unsound API access to a WebAssembly shared linear memory

sudo-rs: Partial password reveal is possible after timeout

Apollo Router Affected by an Access Control Bypass on Polymorphic Types

Apollo Router Improperly Enforces Renamed Access Control Directives

youki container escape and denial of service due to arbitrary write gadgets and procfs write redirects