This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate fse_dump

Dependencies

(17 total, 1 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 bus^22.4.1up to date
 byteorder^11.5.0up to date
 clap^24.5.4out of date
 crossbeam ⚠️^00.8.4maybe insecure
 crossbeam-channel^00.5.12up to date
 csv^11.3.0up to date
 env_logger^00.11.3up to date
 flate2^1.01.0.28up to date
 hashbrown^00.14.3up to date
 lazy_static^11.4.0up to date
 log^0.40.4.21up to date
 parking_lot^00.12.1up to date
 serde^11.0.197up to date
 serde_derive^11.0.197up to date
 serde_json^11.0.115up to date
 structopt^00.3.26up to date
 walkdir^22.5.0up to date

Security Vulnerabilities

crossbeam: MsQueue and SegQueue suffer from double-free

RUSTSEC-2018-0009

Even if an element is popped from a queue, crossbeam would run its destructor inside the epoch-based garbage collector. This is a source of double frees.

The flaw was corrected by wrapping elements inside queues in a ManuallyDrop.

Thanks to @c0gent for reporting the issue.