VDB

GCVE-VVD-MAGEIA-2018-318

GCVE-VVD-MAGEIA-2018-318
Advisory Published
Vulnetix · Advisory published July 23, 2018
The Rust Programming Language rustdoc version before version 1.27.0 contains a CWE-427: Uncontrolled Search Path Element vulnerability in rustdoc plugins that can result in local code execution as a different user. This attack appear to be exploitable via using the --plugin flag without the --plugin-path flag. This vulnerability has been fixed in 1.27.1 (CVE-2018-1000622). This update also fixes a bug in the borrow checker verification of match expressions.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiarust0 (affected), 1.27.1-1.1.mga6 (unaffected)

Aliases

CVE-2018-1000622

Transitive aliases

VVD-GENTOO-2018-662908SUSE-SU-2019:2439-1EUVD-2018-1957SUSE-SU-2019:2755-1BDU:2020-01730OPENSUSE-SU-2019:2244-1VVD-GENTOO-2018-662906CVE-2019-12083GHSA-vc89-vpx6-fmpmOPENSUSE-SU-2024:11360-1OPENSUSE-SU-2019:2294-1GHSA-6f94-33qx-gqcfBDU:2020-01729VVD-GENTOO-2019-685970EUVD-2019-3736GSD-2019-12083OPENSUSE-SU-2024:11359-1VVD-GENTOO-2018-662904OPENSUSE-SU-2019:2203-1

References

Updated rust packages fix security vulnerability
advisory
Updated rust packages fix security vulnerability
issue
Updated rust packages fix security vulnerability
issue
Updated rust packages fix security vulnerability
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›