grpcio-proto 0.3.0

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate `grpcio-proto`

Dependencies

(3 total, 3 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
futures	`^0.1`	`0.3.30`	out of date
grpcio	`^0.3.0`	`0.13.0`	out of date
protobuf ⚠️	`~2.0`	`3.4.0`	out of date

Security Vulnerabilities

`protobuf`: Out of Memory in stream::read_raw_bytes_into()

RUSTSEC-2019-0003

Affected versions of this crate called Vec::reserve() on user-supplied input.

This allows an attacker to cause an Out of Memory condition while calling the vulnerable method on untrusted data.

grpcio-proto 0.3.0

Crate grpcio-proto

Dependencies

Security Vulnerabilities

protobuf: Out of Memory in stream::read_raw_bytes_into()

Crate `grpcio-proto`

`protobuf`: Out of Memory in stream::read_raw_bytes_into()