MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
crate
Search

Forking confusing: Vulnerable Rust crate exposes uv Python packager

Wednesday October 22, 2025. 03:15 PM , from TheRegister
Forks of forks of forks, but which ones are patched?
A vulnerability in the popular Rust crate async-tar has affected the fast uv Python package manager, which uses a forked version that's now patched – but the most widely downloaded version remains unfixed.…
Read more at TheRegister
https://go.theregister.com/feed/www.theregister.com/2025/10/22/vulnerable_rust_crate/

Related News

crate Hack Exposes Kansas City’s Secret Police Misconduct List Wired: Tech.Nov 3
python When APIs become the enterprise backdoor -- securing AI’s most vulnerable link [Q&A] BetaNewsNov 3
forks Bug in Rust-Based Uutils Broke Ubuntu 25.10 Automatic Update Checks SlashdotNov 3
rust Debian to add hard Rust dependency to APT OS NewsNov 2
version Cloudflare Raves About Performance Gains After Rust Rewrite SlashdotNov 2
patched Debian to require Rust as of May 2026 LWN.netNov 1
forking Ubuntu Will Use Rust For Dozens of Core Linux Utilities SlashdotNov 1
which Coinbase CEO Stunt Exposes Prediction Market Vulnerability SlashdotOct 31
packager Rust 1.91 promotes Windows on Arm64 to Tier 1 target InfoWorldOct 31
confusing Rust 1.91.0 released LWN.netOct 30
vulnerable TypeScript Overtakes Python and JavaScript To Claim Top Spot on GitHub SlashdotOct 30
exposes EY exposes 4TB+ SQL database to open internet for who knows how long TheRegisterOct 29
crate Python Foundation Rejects Government Grant Over DEI Restrictions SlashdotOct 28
python Python Software Foundation has bigger spine than big tech OS NewsOct 28
forks Python Foundation goes ride or DEI, rejects government grant with strings attached TheRegisterOct 27
rust Python Software Foundation withdraws security-related grant proposal LWN.netOct 27
version Rust Coreutils 0.3.0 released LWN.netOct 27
patched Python has a friend in Rust InfoWorldOct 24
forking Serious vulnerability found in Rust library InfoWorldOct 23
which [$] DebugFS on Rust LWN.netOct 22
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Dec, Fri 5 - 06:10 CET