shadowsocks 1.22.0

Crate shadowsocks

Dependencies

(32 total, 2 outdated, 1 possibly insecure)

Crate	Required	Latest	Status
aes	`^0.8`	`0.8.4`	up to date
arc-swap	`^1.7`	`1.7.1`	up to date
base64	`^0.22`	`0.22.1`	up to date
blake3	`^1.5`	`1.5.5`	up to date
bloomfilter	`^3.0.0`	`3.0.1`	up to date
byte_string	`^1.0`	`1.0.0`	up to date
bytes	`^1.7`	`1.9.0`	up to date
cfg-if	`^1`	`1.0.0`	up to date
dynosaur	`^0.1.2`	`0.1.2`	up to date
futures	`^0.3`	`0.3.31`	up to date
hickory-resolver	`=0.25.0-alpha.4`	`0.24.2`	up to date
libc	`~0.2.141`	`0.2.169`	up to date
log	`^0.4`	`0.4.25`	up to date
lru_time_cache	`^0.11`	`0.11.11`	up to date
notify	`^7.0`	`8.0.0`	out of date
once_cell	`^1.17`	`1.20.2`	up to date
percent-encoding	`^2.1`	`2.3.1`	up to date
pin-project	`^1.1`	`1.1.8`	up to date
rand	`^0.8`	`0.9.0`	out of date
sendfd	`^0.4`	`0.4.3`	up to date
serde	`^1.0`	`1.0.217`	up to date
serde_json	`^1.0`	`1.0.137`	up to date
serde_urlencoded	`^0.7`	`0.7.1`	up to date
shadowsocks-crypto	`^0.5.8`	`0.5.8`	up to date
socket2	`^0.5`	`0.5.8`	up to date
spin	`^0.9`	`0.9.8`	up to date
thiserror	`^2.0`	`2.0.11`	up to date
tokio ⚠️	`^1.9.0`	`1.43.0`	maybe insecure
tokio-tfo	`^0.3`	`0.3.1`	up to date
trait-variant	`^0.1`	`0.1.2`	up to date
url	`^2.5`	`2.5.4`	up to date
windows-sys	`^0.59`	`0.59.0`	up to date

Crate

Required

Latest

Status

aes

^0.8

0.8.4

up to date

arc-swap

^1.7

1.7.1

up to date

base64

^0.22

0.22.1

up to date

blake3

^1.5

1.5.5

up to date

bloomfilter

^3.0.0

3.0.1

up to date

byte_string

^1.0

1.0.0

up to date

bytes

^1.7

1.9.0

up to date

cfg-if

^1

1.0.0

up to date

dynosaur

^0.1.2

0.1.2

up to date

futures

^0.3

0.3.31

up to date

hickory-resolver

=0.25.0-alpha.4

0.24.2

up to date

libc

~0.2.141

0.2.169

up to date

log

^0.4

0.4.25

up to date

lru_time_cache

^0.11

0.11.11

up to date

notify

^7.0

8.0.0

out of date

once_cell

^1.17

1.20.2

up to date

percent-encoding

^2.1

2.3.1

up to date

pin-project

^1.1

1.1.8

up to date

rand

^0.8

0.9.0

out of date

sendfd

^0.4

0.4.3

up to date

serde

^1.0

1.0.217

up to date

serde_json

^1.0

1.0.137

up to date

serde_urlencoded

^0.7

0.7.1

up to date

shadowsocks-crypto

^0.5.8

0.5.8

up to date

socket2

^0.5

0.5.8

up to date

spin

^0.9

0.9.8

up to date

thiserror

^2.0

2.0.11

up to date

tokio ⚠️

^1.9.0

1.43.0

maybe insecure

tokio-tfo

^0.3

0.3.1

up to date

trait-variant

^0.1

0.1.2

up to date

url

^2.5

2.5.4

up to date

windows-sys

^0.59

0.59.0

up to date

Dev dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
env_logger	`^0.11`	`0.11.6`	up to date

Crate

Required

Latest

Status

env_logger

^0.11

0.11.6

up to date

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

RUSTSEC-2023-0001

On Windows, configuring a named pipe server with pipe_mode will force ServerOptions::reject_remote_clients as false.

This drops any intended explicit configuration for the reject_remote_clients that may have been set as true previously.

The default setting of reject_remote_clients is normally true meaning the default is also overridden as false.

Workarounds

Ensure that pipe_mode is set first after initializing a ServerOptions. For example:

let mut opts = ServerOptions::new();
opts.pipe_mode(PipeMode::Message);
opts.reject_remote_clients(true);

Deps.rs

shadowsocks 1.22.0

Crate `shadowsocks`

Dependencies

Dev dependencies

Security Vulnerabilities

`tokio`: reject_remote_clients Configuration corruption

Workarounds

shadowsocks 1.22.0

Crate shadowsocks

Dependencies

Dev dependencies

Security Vulnerabilities

tokio: reject_remote_clients Configuration corruption

Workarounds

Crate `shadowsocks`

`tokio`: reject_remote_clients Configuration corruption