search

bahlo / sonyflake-rs

🃏 A distributed unique ID generator inspired by Twitter's Snowflake.
https://docs.rs/sonyflake/
Apache License 2.0
174 stars 10 forks source link

RUSTSEC-2020-0159: Potential segfault in `localtime_r` invocations #16

Closed github-actions[bot] closed 6 days ago

github-actions[bot] commented 2 years ago

Potential segfault in localtime_r invocations

Details
Package chrono
Version 0.4.19
URL https://github.com/chronotope/chrono/issues/499
Date 2020-11-10

Impact

Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.

Workarounds

No workarounds are known.

References

See advisory page for additional details.

negezor commented 6 months ago

This Issue is irrelevant since crate time no longer comes with chrono by default.

bahlo commented 6 days ago

Yes