exonum-btc-anchoring 0.10.0

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate `exonum-btc-anchoring`

Dependencies

(24 total, 13 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
bitcoin	`^0.15`	`0.31.2`	out of date
btc-transaction-utils	`^0.4`	`0.9.0`	out of date
byteorder	`^1.2`	`1.5.0`	up to date
clap	`^2.32`	`4.5.4`	out of date
derive_more	`^0.13`	`0.99.17`	out of date
exonum	`^0.10.0`	`1.0.0`	out of date
exonum-derive	`^0.10.0`	`1.0.0`	out of date
exonum-testkit	`^0.10.0`	`1.0.0`	out of date
exonum_bitcoinrpc	`^0.6`	`0.6.0`	up to date
failure	`^0.1`	`0.1.8`	up to date
failure_derive	`^0.1`	`0.1.8`	up to date
hex	`^0.3`	`0.4.3`	out of date
log	`^0.4`	`0.4.21`	up to date
maplit	`^1.0`	`1.0.2`	up to date
matches	`^0.1`	`0.1.10`	up to date
protobuf ⚠️	`^2.2`	`3.4.0`	out of date
rand	`^0.4`	`0.8.5`	out of date
secp256k1	`^0.11`	`0.29.0`	out of date
serde	`^1.0`	`1.0.198`	up to date
serde_derive	`^1.0`	`1.0.198`	up to date
serde_json	`^1.0`	`1.0.116`	up to date
serde_str	`^0.1`	`0.1.0`	up to date
structopt	`^0.2`	`0.3.26`	out of date
toml	`^0.4`	`0.8.12`	out of date

Dev dependencies

(4 total, 3 outdated)

Crate	Required	Latest	Status
exonum-configuration	`^0.10.0`	`0.12.0`	out of date
libc	`^0.2`	`0.2.153`	up to date
pretty_assertions	`^0.5`	`1.4.0`	out of date
proptest	`^0.8`	`1.4.0`	out of date

Security Vulnerabilities

`protobuf`: Out of Memory in stream::read_raw_bytes_into()

RUSTSEC-2019-0003

Affected versions of this crate called Vec::reserve() on user-supplied input.

This allows an attacker to cause an Out of Memory condition while calling the vulnerable method on untrusted data.