RUSTSEC-2020-0159: Potential segfault in localtime_r
invocations
#35
Labels
cause::direct dependency
This issue is caused/concerns a direct dependency of GitArena
status::on hold
type::security
chrono
0.4.19
Impact
Unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires an environment variable to be set in a different thread than the affected functions. This may occur without the user's knowledge, notably in a third-party library.
Workarounds
No workarounds are known.
References
See advisory page for additional details.
The text was updated successfully, but these errors were encountered: