Vulnerable crate found in memoffset

LayerXcom / zero-chain

A privacy-preserving blockchain on Substrate

https://layerxcom.github.io/zerochain-book/

GNU General Public License v3.0

260 stars 42 forks source link

Vulnerable crate found in memoffset #136

Closed osuketh closed 5 years ago

osuketh commented 5 years ago

By cargo audit,

error: Vulnerable crates found!

ID:  RUSTSEC-2019-0011
Crate:   memoffset
Version: 0.2.1
Date:    2019-07-16
URL:     https://github.com/Gilnaa/memoffset/issues/9#issuecomment-505461490
Title:   Flaw in offset_of and span_of causes SIGILL, drops uninitialized memory of arbitrary type on panic in client code
Solution: upgrade to: >= 0.5.0

error: 1 vulnerability found!

osuketh commented 5 years ago

Resolved by updating dependencies.