From cad07fbc256101c1f52adaa7495630f9e4147d84 Mon Sep 17 00:00:00 2001
From: Tony Arcieri <bascule@gmail.com>
Date: Fri, 11 Oct 2019 09:07:24 -0700
Subject: [PATCH] RUSTSEC-2017-0006: rmpv: add patched versions

Patched as of v0.4.2:

https://github.com/RustSec/advisory-db/pull/171#issuecomment-540169499
---
 crates/rmpv/RUSTSEC-2017-0006.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crates/rmpv/RUSTSEC-2017-0006.toml b/crates/rmpv/RUSTSEC-2017-0006.toml
index ede3ebf..29e4af4 100644
--- a/crates/rmpv/RUSTSEC-2017-0006.toml
+++ b/crates/rmpv/RUSTSEC-2017-0006.toml
@@ -10,7 +10,7 @@ buffers without checking whether there is sufficient data available.
 This allows an attacker to do denial-of-service attacks by sending small
 msgpack messages that allocate gigabytes of memory.
 """
-patched_versions = []
+patched_versions = [">= 0.4.2"]
 url = "https://github.com/3Hren/msgpack-rust/issues/151"
 categories = ["denial-of-service"]
 keywords = ["memory", "dos", "msgpack", "serialization", "deserialization"]