RUSTSEC-2023-0028 – buf_redux

Package

Manager: cargo
Name: buf_redux
Vulnerable Version: >=0.0.0-0

Severity

Level: Low

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

EPSS: N/A pctlN/A

Details

buf_redux is Unmaintained Last release was over three years ago. The maintainer(s) have been unreachable to respond to any issues that may or may not include security issues. The repository is now archived and there is no security policy in place to contact the maintainer(s) otherwise. The safety-undocumented unsafe in the crate may or may not be safe to use. The crate also has a current future incompatibility warning [buf_redux/23](https://github.com/abonander/buf_redux/issues/23). ## Possible Alternatives The below may or may not provide alternative(s) - Rust alloc / std vec::Vec, collections::VecDeque - [buffer-redux](https://crates.io/crates/buffer-redux) - fork - [bytes](https://crates.io/crates/bytes) - [crates.io search for 'buffer'](https://crates.io/keywords/buffer)

Metadata

Created: 2023-01-24T12:00:00Z
Modified: 2023-03-24T15:42:41Z
Source: https://osv-vulnerabilities
CWE IDs: N/A
Alternative ID: N/A
Finding: F079
Auto approve: 1