This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate dwm-status

Dependencies

(10 total, 4 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 chrono ⚠️^0.4.60.4.37maybe insecure
 config^0.9.10.14.0out of date
 ctrlc^3.1.13.4.4up to date
 dbus^0.6.30.9.7out of date
 inotify^0.6.10.10.2out of date
 libnotify^1.0.31.0.3up to date
 serde^1.0.801.0.197up to date
 serde_derive^1.0.801.0.197up to date
 uuid^0.7.11.8.0out of date
 x11^2.18.12.21.0up to date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References