Deps.rs

cursive_core 0.3.7

[![dependency status](https://deps.rs/crate/cursive_core/0.3.7/status.svg)](https://deps.rs/crate/cursive_core/0.3.7)

This project contains known security vulnerabilities. Find detailed information at the bottom.

Crate cursive_core

Dependencies

(15 total, 3 outdated, 1 insecure)

CrateRequiredLatestStatus
 ahash^0.80.8.11up to date
 ansi-parser^0.8.00.9.0out of date
 crossbeam-channel^0.50.5.12up to date
 enum-map^2.02.7.3up to date
 enumset^1.0.41.1.3up to date
 lazy_static^11.4.0up to date
 log^0.40.4.21up to date
 num^0.40.4.3up to date
 owning_ref ⚠️^0.40.4.1insecure
 pulldown-cmark^0.90.10.3out of date
 time^0.30.3.36up to date
 toml^0.50.8.12out of date
 unicode-segmentation^11.11.0up to date
 unicode-width^0.10.1.12up to date
 xi-unicode^0.30.3.0up to date

Security Vulnerabilities

owning_ref: Multiple soundness issues in `owning_ref`

RUSTSEC-2022-0040

  • OwningRef::map_with_owner is unsound and may result in a use-after-free.
  • OwningRef::map is unsound and may result in a use-after-free.
  • OwningRefMut::as_owner and OwningRefMut::as_owner_mut are unsound and may result in a use-after-free.
  • The crate violates Rust's aliasing rules, which may cause miscompilations on recent compilers that emit the LLVM noalias attribute.

safer_owning_ref is a replacement crate which fixes these issues. No patched versions of the original crate are available, and the maintainer is unresponsive.