This project might be open to known security vulnerabilities, which can be prevented by tightening the version range of affected dependencies. Find detailed information at the bottom.
mxl-player-components(18 total, 2 outdated, 1 possibly insecure)
| Crate | Required | Latest | Status |
|---|---|---|---|
| log | ^0.4 | 0.4.22 | up to date |
| anyhow | ^1 | 1.0.94 | up to date |
| const_format | ^0.2 | 0.2.34 | up to date |
| once_cell | ^1 | 1.20.2 | up to date |
| termtree | ^0.5 | 0.5.1 | up to date |
| chrono ⚠️ | ^0.4 | 0.4.39 | maybe insecure |
| notify | ^7 | 7.0.0 | up to date |
| notify-debouncer-mini | ^0.4 | 0.5.0 | out of date |
| gstreamer | ^0.23 | 0.23.4 | up to date |
| gstreamer-pbutils | ^0.23 | 0.23.4 | up to date |
| gstreamer-play | ^0.23 | 0.23.4 | up to date |
| gstreamer-video | ^0.23 | 0.23.4 | up to date |
| gstreamer-tag | ^0.23 | 0.23.4 | up to date |
| gst-plugin-gtk4 | =0.13.1 | 0.13.3 | out of date |
| relm4-icons | ^0.9 | 0.9.0 | up to date |
| i18n-embed-fl | ^0.9 | 0.9.2 | up to date |
| rust-embed | ^8 | 8.5.0 | up to date |
| i18n-embed | ^0.15 | 0.15.2 | up to date |
(2 total, all up-to-date)
| Crate | Required | Latest | Status |
|---|---|---|---|
| tempfile | ^3 | 3.14.0 | up to date |
| env_logger | ^0.11 | 0.11.6 | up to date |
chrono: Potential segfault in `localtime_r` invocationsUnix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.
No workarounds are known.