Deps.rs

oftlisp / oftb

[![dependency status](https://deps.rs/repo/github/oftlisp/oftb/status.svg)](https://deps.rs/repo/github/oftlisp/oftb)

This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate oftb

Dependencies

(14 total, 8 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 failure^0.1.10.1.8up to date
 lazy_static^1.0.01.5.0up to date
 libc^0.2.420.2.175up to date
 log^0.4.10.4.27up to date
 num^0.1.420.4.3out of date
 pest^1.0.62.8.1out of date
 pest_derive^1.0.62.8.1out of date
 podio^0.1.60.2.0out of date
 rustc-demangle^0.1.80.1.26up to date
 semver^0.9.01.0.26out of date
 stderrlog^0.4.00.6.0out of date
 structopt^0.2.50.3.26out of date
 symbol^0.1.10.1.9up to date
 xmas-elf ⚠️^0.6.20.10.0out of date

Dev dependencies

(1 total, 1 outdated)

CrateRequiredLatestStatus
 proptest^0.7.01.7.0out of date

Security Vulnerabilities

xmas-elf: Potential out-of-bounds read with a malformed ELF file and the HashTable API.

RUSTSEC-2025-0018

Affected versions of this crate only validated the index argument of HashTable::get_bucket and HashTable::get_chain against the input-controlled bucket_count and chain_count fields, but not against the size of the ELF section. As a result, a malformed ELF file could trigger out-of-bounds reads in a consumer of the HashTable API by setting these fields to inappropriately large values that would fall outside the relevant hash table section, and by introducing correspondingly out-of-bounds hash table indexes elsewhere in the ELF file.