Project

General

Profile

Actions
Copy link

Bug #5266

open

rust: update time dependency

Added by Jeff Lucovsky 10 months ago. Updated 21 days ago.

Status:
Assigned
Priority:
Normal
Assignee:
Jason Ish
Target version:
6.0.11
Affected Versions:
Effort:
Difficulty:
Label:

Description

Crate:         time
Version:       0.1.44
Title:         Potential segfault in the time crate
Date:          2020-11-18
ID:            RUSTSEC-2020-0071
URL:           https://rustsec.org/advisories/RUSTSEC-2020-0071
Solution:      Upgrade to >=0.2.23
Dependency tree: 
time 0.1.44
└── x509-parser 0.6.5
    └── suricata 7.0.0-dev

Related issues 1 (0 open1 closed)

Copied from Bug #5259: rust: update time dependencyClosedJason IshActions
Actions
Copy link
 #1

Updated by Jeff Lucovsky 10 months ago

  • Copied from Bug #5259: rust: update time dependency added
Actions
Copy link
 #2

Updated by Victor Julien 10 months ago

  • Target version changed from 6.0.5 to 6.0.6
Actions
Copy link
 #3

Updated by Victor Julien 7 months ago

  • Target version changed from 6.0.6 to 6.0.7
Actions
Copy link
 #4

Updated by Victor Julien 5 months ago

  • Target version changed from 6.0.7 to 6.0.8
Actions
Copy link
 #5

Updated by Victor Julien 4 months ago

  • Target version changed from 6.0.8 to 6.0.9
Actions
Copy link
 #6

Updated by Victor Julien 4 months ago

  • Target version changed from 6.0.9 to 6.0.10
Actions
Copy link
 #7

Updated by Jason Ish 21 days ago

  • Target version changed from 6.0.10 to 6.0.11

Pushing forward 6.0.11.

This might be out of scope for 6.0 in general. Updating x509-parser to remove this time dependency requires us to move to x509-parser version 0.13.0 which requires Rust 1.53+.

Currently, Suricata 6.0.0 is still trying to support Rust 1.41.1.

Actions
Copy link

Also available in: Atom PDF