This project might be open to known security vulnerabilities , which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom .
Crate actix-codec
Dependencies (9 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate actix-macros
Dependencies (2 total, all up-to-date)
Crate Required Latest Status quote ^1
1.0.40
up to date syn ^2
2.0.100
up to date
Dev dependencies (4 total, all up-to-date)
Crate actix-rt
Dependencies (3 total, all up-to-date)
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status tokio ^1.44.2
1.44.2
up to date
Crate actix-server
Dependencies (9 total, all up-to-date)
Dev dependencies (6 total, all up-to-date)
Crate actix-service
Dependencies (2 total, all up-to-date)
Dev dependencies (3 total, all up-to-date)
Crate actix-tls
Dependencies (17 total, 1 outdated, 1 possibly insecure)
Dev dependencies (11 total, all up-to-date)
Crate actix-tracing
Dependencies (4 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status actix-rt ^2
2.10.0
up to date slab ^0.4
0.4.9
up to date
Crate actix-utils
Dependencies (2 total, all up-to-date)
Dev dependencies (3 total, all up-to-date)
Crate bytestring
Dependencies (2 total, all up-to-date)
Crate Required Latest Status bytes ^1.2
1.10.1
up to date serde ^1
1.0.219
up to date
Dev dependencies (3 total, all up-to-date)
Crate local-channel
Dependencies (3 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status futures-util ^0.3.17
0.3.31
up to date tokio ^1.44.2
1.44.2
up to date
Crate local-waker
No external dependencies! 🙌
Security Vulnerabilities openssl
: Use-After-Free in `Md::fetch` and `Cipher::fetch`RUSTSEC-2025-0022
When a Some(...)
value was passed to the properties
argument of either of these functions, a use-after-free would result.
In practice this would nearly always result in OpenSSL treating the properties as an empty string (due to CString::drop
's behavior).
The maintainers thank quitbug for reporting this vulnerability to us.