CVE search results

1 – 2 of 2 results

Detailed view

Sort by:

CVE-2026-33056

Medium priority

Some fixes available 34 of 52

tar-rs is a tar archive reading/writing library for Rust. In versions 0.4.44 and below, when unpacking a tar archive, the tar crate's unpack_dir function uses fs::metadata() to check whether a path that already exists is a...

23 affected packages

rust-tar, rustc, rustc-1.62, rustc-1.74, rustc-1.76...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
rust-tar	Fixed	Fixed	Needs evaluation	—
rustc	Fixed	Fixed	Needs evaluation	Needs evaluation
rustc-1.62	Not in release	Fixed	—	—
rustc-1.74	Fixed	Not in release	—	—
rustc-1.76	Fixed	Fixed	Needs evaluation	—
rustc-1.77	Fixed	Fixed	Needs evaluation	—
rustc-1.78	Fixed	Fixed	Needs evaluation	—
rustc-1.79	Fixed	Fixed	Needs evaluation	—
rustc-1.80	Fixed	Fixed	Needs evaluation	—
rustc-1.81	Fixed	Fixed	—	—
rustc-1.82	Fixed	Fixed	—	—
rustc-1.83	Fixed	Fixed	—	—
rustc-1.84	Fixed	Fixed	—	—
rustc-1.85	Fixed	Fixed	—	—
rustc-1.88	Not in release	Not in release	—	—
rustc-1.89	Fixed	Fixed	—	—
rustc-1.91	Fixed	Fixed	—	—
rustc-1.92	Not in release	Not in release	—	—
rustc-1.93	Not in release	Not in release	—	—
cargo	Not in release	Needs evaluation	Needs evaluation	Needs evaluation
rust-cargo-c	Needs evaluation	Not in release	—	—
rust-async-tar	Needs evaluation	Not in release	—	—
rust-astral-tokio-tar	Not in release	Not in release	—	—

CVE-2025-11233

Low priority

Needs evaluation

Starting from Rust 1.87.0 and before Rust 1.89.0, the tier 3 Cygwin target (`x86_64-pc-cygwin`) didn't correctly handle path separators, causing the standard library's Path API to ignore path components separated by backslashes....

14 affected packages

rustc, rustc-1.62, rustc-1.74, rustc-1.76, rustc-1.77...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
rustc	Not affected	Not affected	Not affected	Not affected
rustc-1.62	Not in release	Not affected	—	—
rustc-1.74	Not affected	Not in release	—	—
rustc-1.76	Not affected	Not affected	Not affected	—
rustc-1.77	Not affected	Not affected	Not affected	—
rustc-1.78	Not affected	Not affected	Not affected	—
rustc-1.79	Not affected	Not affected	Not affected	—
rustc-1.80	Not affected	Not affected	Not affected	—
rustc-1.88	Not in release	Not in release	—	—
rustc-1.81	Not affected	Not affected	—	—
rustc-1.82	Not affected	Not affected	—	—
rustc-1.83	Not affected	Not affected	—	—
rustc-1.84	Not affected	Not affected	—	—
rustc-1.85	Not affected	Not affected	—	—

Search CVE reports