SamTV12345 / PodFetch

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate `podfetch`

Dependencies

(2 total, 1 possibly insecure)

Crate	Required	Latest	Status
rustls ⚠️	`^0.23`	`0.23.40`	maybe insecure
url	`^2.5.8`	`2.5.8`	up to date

Crate `common-infrastructure`

No external dependencies! 🙌

Crate `podfetch-agent-protocol`

No external dependencies! 🙌

Crate `podfetch-cast`

No external dependencies! 🙌

Crate `podfetch-domain`

No external dependencies! 🙌

Crate `podfetch-web`

Dev dependencies

(1 total, all up-to-date)

Crate	Required	Latest	Status
ctor	`^1.0.4`	`1.0.5`	up to date

Crate `podfetch-persistence`

No external dependencies! 🙌

Crate `podfetch-storage`

No external dependencies! 🙌

Security Vulnerabilities

`rustls`: rustls network-reachable panic in `Acceptor::accept`

RUSTSEC-2024-0399

A bug introduced in rustls 0.23.13 leads to a panic if the received TLS ClientHello is fragmented. Only servers that use rustls::server::Acceptor::accept() are affected.

Servers that use tokio-rustls's LazyConfigAcceptor API are affected.

Servers that use tokio-rustls's TlsAcceptor API are not affected.

Servers that use rustls-ffi's rustls_acceptor_accept API are affected.

SamTV12345 / PodFetch

Crate podfetch

Dependencies

Crate common-infrastructure

Crate podfetch-agent-protocol

Crate podfetch-cast

Crate podfetch-domain

Crate podfetch-web

Dev dependencies

Crate podfetch-persistence

Crate podfetch-storage

Security Vulnerabilities

rustls: rustls network-reachable panic in `Acceptor::accept`

Crate `podfetch`

Crate `common-infrastructure`

Crate `podfetch-agent-protocol`

Crate `podfetch-cast`

Crate `podfetch-domain`

Crate `podfetch-web`

Crate `podfetch-persistence`

Crate `podfetch-storage`

`rustls`: rustls network-reachable panic in `Acceptor::accept`