rustsec/advisory-db
1
0
Fork 0
mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
advisory-db/crates/xml-rs/RUSTSEC-2022-0048.md
Kornel 50bed3ba40 xml-rs is maintained (#1691)
2023-05-05 09:39:54 +02:00

720 B
Raw Permalink Blame History 

[advisory]
id = "RUSTSEC-2022-0048"
package = "xml-rs"
date = "2022-01-26"
withdrawn = "2023-05-04"
url = "https://github.com/netvl/xml-rs/issues"
references = ["https://github.com/netvl/xml-rs/issues/219", "https://github.com/netvl/xml-rs/issues/210", "https://github.com/netvl/xml-rs/issues/204"]
informational = "unmaintained"

[versions]
patched = []

xml-rs is Unmaintained

xml-rs is a XML parser has open issues around parsing including integer overflows / panics that may or may not be an issue with untrusted data.

Together with these open issues with Unmaintained status xml-rs may or may not be suited to parse untrusted data.

Alternatives