This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate elastic_types

Dependencies

(8 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 chrono ⚠️~0.4.00.4.37maybe insecure
 elastic_types_derive~0.21.0-pre.30.20.10up to date
 geo~0.4.00.28.0out of date
 geohash~0.4.00.13.1out of date
 geojson~0.9.00.24.1out of date
 serde~11.0.197up to date
 serde_derive~11.0.197up to date
 serde_json~11.0.115up to date

Dev dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 json_str0.*0.5.2up to date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References