rpm package
opensuse/spotifyd&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/spotifyd&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-24713 | — | < 0.3.3-5.1 | 0.3.3-5.1 | Mar 8, 2022 | regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane | ||
| CVE-2021-45710 | — | < 0.3.3-2.1 | 0.3.3-2.1 | Dec 26, 2021 | An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. In certain circumstances involving a closed oneshot channel, there is a data race and memory corruption. | ||
| CVE-2021-21299 | — | < 0.3.3-9.1 | 0.3.3-9.1 | Feb 11, 2021 | hyper is an open-source HTTP library for Rust (crates.io). In hyper from version 0.12.0 and before versions 0.13.10 and 0.14.3 there is a vulnerability that can enable a request smuggling attack. The HTTP server code had a flaw that incorrectly understands some requests with mult |
- CVE-2022-24713Mar 8, 2022affected < 0.3.3-5.1fixed 0.3.3-5.1
regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane
- CVE-2021-45710Dec 26, 2021affected < 0.3.3-2.1fixed 0.3.3-2.1
An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. In certain circumstances involving a closed oneshot channel, there is a data race and memory corruption.
- CVE-2021-21299Feb 11, 2021affected < 0.3.3-9.1fixed 0.3.3-9.1
hyper is an open-source HTTP library for Rust (crates.io). In hyper from version 0.12.0 and before versions 0.13.10 and 0.14.3 there is a vulnerability that can enable a request smuggling attack. The HTTP server code had a flaw that incorrectly understands some requests with mult