Deps.rs

parking_lot 0.11.1

[![dependency status](https://deps.rs/crate/parking_lot/0.11.1/status.svg)](https://deps.rs/crate/parking_lot/0.11.1)

This project contains known security vulnerabilities. Find detailed information at the bottom.

Crate parking_lot

Dependencies

(3 total, 1 insecure)

CrateRequiredLatestStatus
 instant^0.1.40.1.10up to date
 lock_api^0.4.00.4.4insecure
 parking_lot_core^0.8.00.8.3up to date

Dev dependencies

(2 total, 1 outdated)

CrateRequiredLatestStatus
 bincode^1.3.01.3.3up to date
 rand^0.7.30.8.4out of date

Security Vulnerabilities

lock_api: Some lock_api lock guard objects can cause data races

RUSTSEC-2020-0070

Affected versions of lock_api had unsound implementations of the Send or Sync traits for some guard objects, namely:

  • MappedMutexGuard
  • MappedRwLockReadGuard
  • MappedRwLockWriteGuard
  • RwLockReadGuard
  • RwLockWriteGuard

These guards could allow data races through types that are not safe to Send across thread boundaries in safe Rust code.

This issue was fixed by changing the trait bounds on the Mapped guard types and removing the Sync trait for the RwLock guards.