This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.

Crate rustdesk

Dependencies

(32 total, 5 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 async-trait^0.10.1.80up to date
 whoami^1.5.01.5.1up to date
 serde_derive^1.01.0.203up to date
 serde^1.01.0.203up to date
 serde_json^1.01.0.117up to date
 serde_repr^0.10.1.19up to date
 cfg-if^1.01.0.0up to date
 lazy_static^1.41.4.0up to date
 sha2^0.100.10.8up to date
 repng^0.20.2.2up to date
 dasp^0.110.11.0up to date
 rubato^0.120.15.0out of date
 samplerate^0.20.2.4up to date
 uuid^1.31.8.0up to date
 clap^4.24.5.7up to date
 rpassword^7.27.3.1up to date
 num_cpus^1.151.16.0up to date
 bytes^1.41.6.0up to date
 default-net^0.140.22.0out of date
 wol-rs^1.01.0.1up to date
 flutter_rust_bridge=1.801.82.6out of date
 errno^0.30.3.9up to date
 url^2.32.5.2up to date
 crossbeam-queue^0.30.3.11up to date
 hex^0.40.4.3up to date
 chrono ⚠️^0.40.4.38maybe insecure
 cidr-utils^0.50.6.1out of date
 libloading^0.80.8.3up to date
 fon^0.60.6.0up to date
 zip^0.62.1.3out of date
 shutdown_hooks^0.10.1.0up to date
 totp-rs^5.45.5.1up to date

Dev dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 hound^3.53.5.1up to date

Build dependencies

(2 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.0.99up to date
 os-version^0.20.2.0up to date

Crate scrap

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 cfg-if^1.01.0.0up to date
 num_cpus^1.151.16.0up to date
 lazy_static^1.41.4.0up to date
 serde^1.01.0.203up to date
 winapi^0.30.3.9up to date

Build dependencies

(3 total, 1 outdated)

CrateRequiredLatestStatus
 target_build_utils^0.30.3.1up to date
 bindgen^0.650.69.4out of date
 pkg-config^0.3.270.3.30up to date

Crate hbb_common

Dependencies

(32 total, 4 outdated, 1 possibly insecure)

CrateRequiredLatestStatus
 flexi_logger^0.270.28.4out of date
 protobuf^3.43.4.0up to date
 tokio^1.381.38.0up to date
 tokio-util^0.70.7.11up to date
 futures^0.30.3.30up to date
 bytes^1.61.6.0up to date
 log^0.40.4.21up to date
 env_logger^0.100.11.3out of date
 socket2^0.30.5.7out of date
 zstd^0.130.13.1up to date
 anyhow^1.01.0.86up to date
 futures-util^0.30.3.30up to date
 directories-next^2.02.0.0up to date
 rand^0.80.8.5up to date
 serde_derive^1.01.0.203up to date
 serde^1.01.0.203up to date
 serde_json^1.01.0.117up to date
 lazy_static^1.41.4.0up to date
 dirs-next^2.02.0.0up to date
 filetime^0.20.2.23up to date
 sodiumoxide^0.20.2.7up to date
 regex^1.81.10.5up to date
 chrono ⚠️^0.40.4.38maybe insecure
 backtrace^0.30.3.73up to date
 libc^0.20.2.155up to date
 dlopen^0.10.1.8up to date
 toml^0.70.8.14out of date
 uuid^1.31.8.0up to date
 thiserror^1.01.0.61up to date
 httparse^1.51.9.4up to date
 base64^0.220.22.1up to date
 url^2.22.5.2up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 protobuf-codegen^3.43.4.0up to date

Crate enigo

Dependencies

(3 total, all up-to-date)

CrateRequiredLatestStatus
 serde^1.01.0.203up to date
 serde_derive^1.01.0.203up to date
 log^0.40.4.21up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 pkg-config^0.30.3.30up to date

Crate clipboard

Dependencies

(5 total, all up-to-date)

CrateRequiredLatestStatus
 thiserror^1.01.0.61up to date
 lazy_static^1.41.4.0up to date
 serde^1.01.0.203up to date
 serde_derive^1.01.0.203up to date
 parking_lot^0.120.12.3up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.0.99up to date

Crate virtual_display

Dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 lazy_static^1.41.4.0up to date

Crate dylib_virtual_display

Dependencies

(4 total, all up-to-date)

CrateRequiredLatestStatus
 thiserror^1.0.301.0.61up to date
 lazy_static^1.41.4.0up to date
 serde^1.01.0.203up to date
 serde_derive^1.01.0.203up to date

Build dependencies

(1 total, all up-to-date)

CrateRequiredLatestStatus
 cc^1.01.0.99up to date

Crate rustdesk-portable-packer

Dependencies

(4 total, 1 outdated)

CrateRequiredLatestStatus
 brotli^3.46.0.0out of date
 dirs^5.05.0.1up to date
 md5^0.70.7.0up to date
 winapi^0.30.3.9up to date

Security Vulnerabilities

chrono: Potential segfault in `localtime_r` invocations

RUSTSEC-2020-0159

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References