From 60455ec8b1488f474b1122a99305ddda3b5dad09 Mon Sep 17 00:00:00 2001
From: Richard Bradfield <bradfier@fstab.me>
Date: Fri, 16 Apr 2021 12:27:30 +0100
Subject: [PATCH] Mark patched tiny-http version for 2020-0031 (#875)

* Mark patched tiny-http version for 2020-0031

A backport of the fix for 2020-0031 has been applied to the 0.6.x
branch, starting at 0.6.3, subsequent 0.6 versions are no longer
vulnerable.

* Fix version specification

Co-authored-by: Sergey "Shnatsel" Davidoff <shnatsel@gmail.com>
---
 crates/tiny_http/RUSTSEC-2020-0031.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/tiny_http/RUSTSEC-2020-0031.md b/crates/tiny_http/RUSTSEC-2020-0031.md
index f0c1a85..733becc 100644
--- a/crates/tiny_http/RUSTSEC-2020-0031.md
+++ b/crates/tiny_http/RUSTSEC-2020-0031.md
@@ -8,7 +8,7 @@ keywords = ["http", "request-smuggling"]
 url = "https://github.com/tiny-http/tiny-http/issues/173"
 
 [versions]
-patched = [">= 0.8.0"]
+patched = [">= 0.8.0", "^0.6.3"]
 ```
 
 # HTTP Request smuggling through malformed Transfer Encoding headers