This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.
x86(4 total, 3 outdated, 1 possibly insecure)
| Crate | Required | Latest | Status |
|---|---|---|---|
| bit_field | ^0.10.1 | 0.10.2 | up to date |
| bitflags | 1.* | 2.5.0 | out of date |
| phf | ^0.8.0 | 0.11.2 | out of date |
| raw-cpuid ⚠️ | ^9.0.0 | 11.0.1 | out of date |
(2 total, 1 outdated)
| Crate | Required | Latest | Status |
|---|---|---|---|
| klogger | ^0.0.6 | 0.0.16 | out of date |
| libc | 0.2.* | 0.2.153 | up to date |
raw-cpuid: Optional `Deserialize` implementations lacking validationWhen activating the non-default feature serialize, most structs implement
serde::Deserialize without sufficient validation. This allows breaking
invariants in safe code, leading to:
as_string() methods (which use
std::str::from_utf8_unchecked() internally).See https://github.com/gz/rust-cpuid/issues/43.