This project might be open to known security vulnerabilities , which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom .
Crate webrtc-constraints
Dependencies (4 total, all up-to-date)
Dev dependencies (3 total, 1 outdated)
Crate webrtc-data
Dependencies (5 total, all up-to-date)
Dev dependencies (3 total, 1 outdated)
Crate webrtc-dtls
Dependencies (29 total, 4 outdated, 1 possibly insecure)
Dev dependencies (4 total, 2 outdated)
Crate examples
Dev dependencies (13 total, 3 outdated)
Crate webrtc-ice
Dependencies (13 total, all up-to-date)
Dev dependencies (9 total, 3 outdated)
Crate interceptor
Dependencies (8 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status tokio-test ^0.4
0.4.4
up to date chrono ^0.4.28
0.4.38
up to date
Crate webrtc-mdns
Dependencies (4 total, all up-to-date)
Crate Required Latest Status tokio ^1.32.0
1.37.0
up to date socket2 ^0.5
0.5.6
up to date log ^0.4
0.4.21
up to date thiserror ^1
1.0.59
up to date
Dev dependencies (3 total, 2 outdated)
Crate Required Latest Status env_logger ^0.10
0.11.3
out of date chrono ^0.4.28
0.4.38
up to date clap ^3
4.5.4
out of date
Crate webrtc-media
Dependencies (4 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate rtcp
Dependencies (2 total, all up-to-date)
Crate Required Latest Status bytes ^1
1.6.0
up to date thiserror ^1
1.0.59
up to date
Crate rtp
Dependencies (5 total, all up-to-date)
Dev dependencies (2 total, all up-to-date)
Crate Required Latest Status chrono ^0.4.28
0.4.38
up to date criterion ^0.5
0.5.1
up to date
Crate webrtc-sctp
Dependencies (9 total, all up-to-date)
Dev dependencies (5 total, 2 outdated)
Crate sdp
Dependencies (4 total, all up-to-date)
Crate Required Latest Status url ^2
2.5.0
up to date rand ^0.8
0.8.5
up to date thiserror ^1
1.0.59
up to date substring ^1
1.4.5
up to date
Dev dependencies (1 total, all up-to-date)
Crate Required Latest Status criterion ^0.5
0.5.1
up to date
Crate webrtc-srtp
Dependencies (13 total, all up-to-date)
Crate Required Latest Status byteorder ^1
1.5.0
up to date bytes ^1
1.6.0
up to date thiserror ^1
1.0.59
up to date hmac ^0.12
0.12.1
up to date sha1 ^0.10
0.10.6
up to date ctr ^0.9
0.9.2
up to date aes ^0.8
0.8.4
up to date subtle ^2
2.5.0
up to date tokio ^1.32.0
1.37.0
up to date log ^0.4
0.4.21
up to date aead ^0.5
0.5.2
up to date aes-gcm ^0.10
0.10.3
up to date openssl ^0.10.57
0.10.64
up to date
Dev dependencies (3 total, all up-to-date)
Crate stun
Dependencies (10 total, 1 outdated)
Crate Required Latest Status tokio ^1.32.0
1.37.0
up to date lazy_static ^1
1.4.0
up to date url ^2
2.5.0
up to date rand ^0.8
0.8.5
up to date base64 ^0.21
0.22.0
out of date subtle ^2.4
2.5.0
up to date crc ^3
3.2.1
up to date ring ^0.17
0.17.8
up to date md-5 ^0.10
0.10.6
up to date thiserror ^1
1.0.59
up to date
Dev dependencies (3 total, 1 outdated)
Crate turn
Dependencies (11 total, 1 outdated)
Dev dependencies (6 total, 2 outdated)
Crate webrtc-util
Dependencies (9 total, all up-to-date)
Dev dependencies (5 total, 1 outdated)
Crate webrtc
Dependencies (23 total, 2 outdated, 1 possibly insecure)
Dev dependencies (2 total, 1 outdated)
Crate hub
Dependencies (5 total, 3 outdated, 1 possibly insecure)
Crate signal
Dependencies (5 total, 2 outdated)
Crate Required Latest Status tokio ^1.32.0
1.37.0
up to date anyhow ^1
1.0.82
up to date base64 ^0.21
0.22.0
out of date lazy_static ^1
1.4.0
up to date hyper ^0.14.27
1.3.1
out of date
Security Vulnerabilities rustls
: `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network inputRUSTSEC-2024-0336
If a close_notify
alert is received during a handshake, complete_io
does not terminate.
Callers which do not call complete_io
are not affected.
rustls-tokio
and rustls-ffi
do not call complete_io
and are not affected.
rustls::Stream
and rustls::StreamOwned
types use
complete_io
and are affected.
Patched
>=0.23.5
>=0.22.4, <0.23.0
>=0.21.11, <0.22.0