crates.io package

rusqlite

pkg:cargo/rusqlite

Vulnerabilities (15)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2021-45713	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_scalar_function has a use-after-free.
CVE-2021-45714	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_aggregate_function has a use-after-free.
CVE-2021-45715	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_window_function has a use-after-free.
CVE-2021-45716	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_collation has a use-after-free.
CVE-2021-45717	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. commit_hook has a use-after-free.
CVE-2021-45718	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. rollback_hook has a use-after-free.
CVE-2021-45719	—	>= 0.25.0, < 0.25.4	0.25.4	Dec 26, 2021	An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. update_hook has a use-after-free.
CVE-2020-35866	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via VTab / VTabCursor.
CVE-2020-35867	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via create_module.
CVE-2020-35868	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via UnlockNotification.
CVE-2020-35869	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because rusqlite::trace::log mishandles format strings.
CVE-2020-35870	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API use-after-free.
CVE-2020-35871	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API data race.
CVE-2020-35872	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via the repr(Rust) type.
CVE-2020-35873	—	< 0.23.0	0.23.0	Dec 31, 2020	An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because sessions.rs has a use-after-free.

CVE-2021-45713Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_scalar_function has a use-after-free.
CVE-2021-45714Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_aggregate_function has a use-after-free.
CVE-2021-45715Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_window_function has a use-after-free.
CVE-2021-45716Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. create_collation has a use-after-free.
CVE-2021-45717Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. commit_hook has a use-after-free.
CVE-2021-45718Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. rollback_hook has a use-after-free.
CVE-2021-45719Dec 26, 2021
affected >= 0.25.0, < 0.25.4fixed 0.25.4
An issue was discovered in the rusqlite crate 0.25.x before 0.25.4 and 0.26.x before 0.26.2 for Rust. update_hook has a use-after-free.
CVE-2020-35866Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via VTab / VTabCursor.
CVE-2020-35867Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via create_module.
CVE-2020-35868Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via UnlockNotification.
CVE-2020-35869Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because rusqlite::trace::log mishandles format strings.
CVE-2020-35870Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API use-after-free.
CVE-2020-35871Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via an Auxdata API data race.
CVE-2020-35872Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated via the repr(Rust) type.
CVE-2020-35873Dec 31, 2020
affected < 0.23.0fixed 0.23.0
An issue was discovered in the rusqlite crate before 0.23.0 for Rust. Memory safety can be violated because sessions.rs has a use-after-free.