This project contains known security vulnerabilities. Find detailed information at the bottom.

Crate dicom

No external dependencies! 🙌

Crate dicom-core

Dependencies

(6 total, 1 insecure)

CrateRequiredLatestStatus
 chrono ⚠️^0.4.60.4.19insecure
 itertools^0.100.10.1up to date
 num-traits^0.2.120.2.14up to date
 safe-transmute^0.11.00.11.2up to date
 smallvec^1.6.11.7.0up to date
 snafu^0.6.80.6.10up to date

Crate dicom-encoding

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 encoding^0.2.330.2.33up to date
 byteordered^0.60.6.0up to date
 inventory^0.1.40.2.0out of date
 snafu^0.6.80.6.10up to date

Crate dicom-parser

Dependencies

(3 total, 1 insecure)

CrateRequiredLatestStatus
 chrono ⚠️^0.4.60.4.19insecure
 smallvec^1.6.11.7.0up to date
 snafu^0.6.80.6.10up to date

Crate dicom-transfer-syntax-registry

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 lazy_static^1.2.01.4.0up to date
 encoding^0.2.330.2.33up to date
 byteordered^0.60.6.0up to date
 inventory^0.1.40.2.0out of date

Crate dicom-object

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 itertools^0.100.10.1up to date
 byteordered^0.60.6.0up to date
 smallvec^1.6.11.7.0up to date
 snafu^0.6.80.6.10up to date

Dev dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 dicom-test-files^0.2.00.2.0up to date
 tempfile^3.2.03.2.0up to date

Crate dicom-dictionary-std

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 lazy_static^1.2.01.4.0up to date

Crate dicom-dictionary-builder

Dependencies

(6 total, all up-to-date)

CrateRequiredLatestStatus
 clap^2.18.02.34.0up to date
 regex^1.0.01.5.4up to date
 serde^1.0.551.0.130up to date
 serde_json^1.0.171.0.72up to date
 heck^0.3.10.3.3up to date
 reqwest^0.110.11.7up to date

Crate dcmdump

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 term_size^0.3.20.3.2up to date
 itertools^0.100.10.1up to date
 snafu^0.6.80.6.10up to date
 colored^2.0.02.0.0up to date
 structopt^0.3.210.3.25up to date

Crate dicom-dump

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 term_size^0.3.20.3.2up to date
 itertools^0.100.10.1up to date
 snafu^0.6.80.6.10up to date
 colored^2.0.02.0.0up to date
 structopt^0.3.210.3.25up to date

Crate dicom-ul

Dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 byteordered^0.60.6.0up to date
 snafu^0.6.80.6.10up to date

Dev dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 matches^0.1.80.1.9up to date

Crate dicom-scpproxy

Dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 clap^2.33.02.34.0up to date
 snafu^0.6.80.6.10up to date

Crate dicom-echoscu

Dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 structopt^0.3.210.3.25up to date
 smallvec^1.6.11.7.0up to date

Crate dicom-storescu

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 structopt^0.3.210.3.25up to date

Crate dicom-pixeldata

Dependencies

(8 total, all up-to-date)

CrateRequiredLatestStatus
 snafu^0.6.80.6.10up to date
 byteorder^1.4.31.4.3up to date
 image^0.23.140.23.14up to date
 gdcm-rs^0.2.00.2.0up to date
 rayon^1.5.01.5.1up to date
 ndarray^0.15.10.15.4up to date
 ndarray-stats^0.50.5.0up to date
 num-traits^0.2.120.2.14up to date

Dev dependencies

(2 total, 1 outdated)

CrateRequiredLatestStatus
 dicom-test-files^0.2.00.2.0up to date
 rstest^0.10.00.11.0out of date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References