This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate rustdesk

Dependencies

(32 total, 5 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 async-trait^0.10.1.83up to date
 whoami^1.5.01.5.2up to date
 serde_derive^1.01.0.210up to date
 serde^1.01.0.210up to date
 serde_json^1.01.0.128up to date
 serde_repr^0.10.1.19up to date
 cfg-if^1.01.0.0up to date
 lazy_static^1.41.5.0up to date
 sha2^0.100.10.8up to date
 repng^0.20.2.2up to date
 dasp^0.110.11.0up to date
 rubato^0.120.16.0out of date
 samplerate^0.20.2.4up to date
 uuid^1.31.10.0up to date
 clap^4.24.5.19up to date
 rpassword^7.27.3.1up to date
 num_cpus^1.151.16.0up to date
 bytes^1.41.7.2up to date
 default-net^0.140.22.0out of date
 wol-rs^1.01.0.1up to date
 flutter_rust_bridge=1.802.4.0out of date
 errno^0.30.3.9up to date
 url^2.32.5.2up to date
 crossbeam-queue^0.30.3.11up to date
 hex^0.40.4.3up to date
 chrono ⚠️^0.40.4.38maybe insecure
 cidr-utils^0.50.6.1out of date
 libloading^0.80.8.5up to date
 fon^0.60.6.0up to date
 zip^0.62.2.0out of date
 shutdown_hooks^0.10.1.0up to date
 totp-rs^5.45.6.0up to date

Dev dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 hound^3.53.5.1up to date

Build dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.1.24up to date
 os-version^0.20.2.0up to date

Crate scrap

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 cfg-if^1.01.0.0up to date
 num_cpus^1.151.16.0up to date
 lazy_static^1.41.5.0up to date
 serde^1.01.0.210up to date
 winapi^0.30.3.9up to date

Build dependencies

(3 total, 1 outdated)

CrateRequiredLatestStatus
 target_build_utils^0.30.3.1up to date
 bindgen^0.650.70.1out of date
 pkg-config^0.3.270.3.31up to date

Crate hbb_common

Dependencies

(32 total, 4 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 flexi_logger^0.270.29.1out of date
 protobuf^3.43.6.0up to date
 tokio^1.381.40.0up to date
 tokio-util^0.70.7.12up to date
 futures^0.30.3.30up to date
 bytes^1.61.7.2up to date
 log^0.40.4.22up to date
 env_logger^0.100.11.5out of date
 socket2^0.30.5.7out of date
 zstd^0.130.13.2up to date
 anyhow^1.01.0.89up to date
 futures-util^0.30.3.30up to date
 directories-next^2.02.0.0up to date
 rand^0.80.8.5up to date
 serde_derive^1.01.0.210up to date
 serde^1.01.0.210up to date
 serde_json^1.01.0.128up to date
 lazy_static^1.41.5.0up to date
 dirs-next^2.02.0.0up to date
 filetime^0.20.2.25up to date
 sodiumoxide^0.20.2.7up to date
 regex^1.81.11.0up to date
 chrono ⚠️^0.40.4.38maybe insecure
 backtrace^0.30.3.74up to date
 libc^0.20.2.159up to date
 dlopen^0.10.1.8up to date
 toml^0.70.8.19out of date
 uuid^1.31.10.0up to date
 thiserror^1.01.0.64up to date
 httparse^1.51.9.5up to date
 base64^0.220.22.1up to date
 url^2.22.5.2up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 protobuf-codegen^3.43.6.0up to date

Crate enigo

Dependencies

(3 total, all up-to-date)

CrateRequiredLatestStatus
 serde^1.01.0.210up to date
 serde_derive^1.01.0.210up to date
 log^0.40.4.22up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 pkg-config^0.30.3.31up to date

Crate clipboard

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 thiserror^1.01.0.64up to date
 lazy_static^1.41.5.0up to date
 serde^1.01.0.210up to date
 serde_derive^1.01.0.210up to date
 parking_lot^0.120.12.3up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.1.24up to date

Crate virtual_display

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 lazy_static^1.41.5.0up to date

Crate dylib_virtual_display

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 thiserror^1.0.301.0.64up to date
 lazy_static^1.41.5.0up to date
 serde^1.01.0.210up to date
 serde_derive^1.01.0.210up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.1.24up to date

Crate rustdesk-portable-packer

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 brotli^3.47.0.0out of date
 dirs^5.05.0.1up to date
 md5^0.70.7.0up to date
 winapi^0.30.3.9up to date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References