Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Resolve RUSTSEC-2020-0052 #4515

Closed
ktff opened this issue Oct 11, 2020 · 0 comments · Fixed by #4561
Closed

Resolve RUSTSEC-2020-0052 #4515

ktff opened this issue Oct 11, 2020 · 0 comments · Fixed by #4561
Assignees
Labels
domain: deps Anything related to Vector's dependencies domain: security Anything related to security type: task Generic non-code related tasks

Comments

@ktff
Copy link
Contributor

ktff commented Oct 11, 2020

crossbeam-rs/crossbeam#533 fixed a security vulnerability in crossbeam crate and released v0.4.4 with the fix.

We depend on crossbeam through criterion which is only used in dev so it doesn't have an effect on the users.

It doesn't seem that criterion is yet updated with this patch.

Detected in https://github.com/timberio/vector/pull/4037/checks?check_run_id=1239361723

@ktff ktff added type: task Generic non-code related tasks domain: security Anything related to security domain: deps Anything related to Vector's dependencies labels Oct 11, 2020
@jamtur01 jamtur01 self-assigned this Oct 11, 2020
@jamtur01 jamtur01 linked a pull request Oct 14, 2020 that will close this issue
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
domain: deps Anything related to Vector's dependencies domain: security Anything related to security type: task Generic non-code related tasks
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants