This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate rustdesk

Dependencies

(32 total, 3 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 whoami^1.41.4.1up to date
 serde_derive^1.01.0.188up to date
 serde^1.01.0.188up to date
 serde_json^1.01.0.107up to date
 serde_repr^0.10.1.16up to date
 cfg-if^1.01.0.0up to date
 lazy_static^1.41.4.0up to date
 sha2^0.100.10.7up to date
 repng^0.20.2.2up to date
 runas=1.01.1.0out of date
 dasp^0.110.11.0up to date
 rubato^0.120.14.1out of date
 samplerate^0.20.2.4up to date
 async-trait^0.10.1.73up to date
 uuid^1.31.4.1up to date
 clap^4.24.4.4up to date
 rpassword^7.27.2.0up to date
 base64^0.210.21.4up to date
 num_cpus^1.151.16.0up to date
 bytes^1.41.5.0up to date
 default-net^0.140.17.0out of date
 wol-rs^1.01.0.1up to date
 flutter_rust_bridge^1.751.82.1up to date
 errno^0.30.3.3up to date
 url^2.32.4.1up to date
 crossbeam-queue^0.30.3.8up to date
 hex^0.40.4.3up to date
 chrono ⚠️^0.40.4.31maybe insecure
 cidr-utils^0.50.5.11up to date
 libloading^0.80.8.0up to date
 fon^0.60.6.0up to date
 zip^0.60.6.6up to date

Dev dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 hound^3.53.5.0up to date

Build dependencies

(3 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.0.83up to date
 flutter_rust_bridge_codegen^1.751.82.1up to date
 os-version^0.20.2.0up to date

Crate scrap

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 cfg-if^1.01.0.0up to date
 num_cpus^1.151.16.0up to date
 lazy_static^1.41.4.0up to date
 webm^1.01.0.2up to date
 winapi^0.30.3.9up to date

Build dependencies

(3 total, 1 outdated)

CrateRequiredLatestStatus
 target_build_utils^0.30.3.1up to date
 bindgen^0.650.68.1out of date
 pkg-config^0.3.270.3.27up to date

Crate hbb_common

Dependencies

(30 total, 4 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 flexi_logger^0.250.27.0out of date
 protobuf^3.23.2.0up to date
 tokio^1.281.32.0up to date
 tokio-util^0.70.7.9up to date
 futures^0.30.3.28up to date
 bytes^1.41.5.0up to date
 log^0.40.4.20up to date
 env_logger^0.100.10.0up to date
 socket2^0.30.5.4out of date
 zstd^0.120.12.4up to date
 quinn^0.90.10.2out of date
 anyhow^1.01.0.75up to date
 futures-util^0.30.3.28up to date
 directories-next^2.02.0.0up to date
 rand^0.80.8.5up to date
 serde_derive^1.01.0.188up to date
 serde^1.01.0.188up to date
 serde_json^1.01.0.107up to date
 lazy_static^1.41.4.0up to date
 dirs-next^2.02.0.0up to date
 filetime^0.20.2.22up to date
 sodiumoxide^0.20.2.7up to date
 regex^1.81.9.5up to date
 chrono ⚠️^0.40.4.31maybe insecure
 backtrace^0.30.3.69up to date
 libc^0.20.2.148up to date
 dlopen^0.10.1.8up to date
 toml^0.70.8.0out of date
 uuid^1.31.4.1up to date
 sysinfo^0.290.29.10up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 protobuf-codegen^3.23.2.0up to date

Crate enigo

Dependencies

(3 total, all up-to-date)

CrateRequiredLatestStatus
 serde^1.01.0.188up to date
 serde_derive^1.01.0.188up to date
 log^0.40.4.20up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 pkg-config^0.30.3.27up to date

Crate clipboard

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 thiserror^1.01.0.48up to date
 lazy_static^1.41.4.0up to date
 serde^1.01.0.188up to date
 serde_derive^1.01.0.188up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.0.83up to date

Crate virtual_display

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 lazy_static^1.41.4.0up to date

Crate dylib_virtual_display

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 thiserror^1.0.301.0.48up to date
 lazy_static^1.41.4.0up to date
 serde^1.01.0.188up to date
 serde_derive^1.01.0.188up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.0.83up to date

Crate rustdesk-portable-packer

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 brotli^3.33.3.4up to date
 dirs^5.05.0.1up to date
 md5^0.70.7.0up to date
 winapi^0.30.3.9up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 embed-resource^2.12.3.0up to date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References