This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate actix-web-multipart-file

Dependencies

(7 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 actix-web ⚠️^0.7.64.5.1out of date
 bytes^0.4.101.6.0out of date
 failure^0.1.20.1.8up to date
 futures^0.1.240.3.30out of date
 log^0.4.50.4.21up to date
 mime^0.3.90.3.17up to date
 tempfile^3.0.33.10.1up to date

Security Vulnerabilities

actix-web: Multiple memory safety issues

RUSTSEC-2018-0019

Affected versions contain multiple memory safety issues, such as:

  • Unsoundly coercing immutable references to mutable references
  • Unsoundly extending lifetimes of strings
  • Adding the Send marker trait to objects that cannot be safely sent between threads

This may result in a variety of memory corruption scenarios, most likely use-after-free.

A significant refactoring effort has been conducted to resolve these issues.