OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-19 01:46:04 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update RUSTSEC-2020-0071.md (#1591)

Browse Source
This commit is contained in:
David Krasnitsky
2023-02-08 16:08:26 +02:00
committed by GitHub
parent 8a1400e316
commit cb6cfde9a9
1 changed files with 23 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
crates/time/RUSTSEC-2020-0071.md
View File

@@ -71,4 +71,26 @@ Users of time 0.1 do not have a patch and should upgrade to an unaffected versio
### Workarounds
No workarounds are known.
A possible workaround for crates affected through the transitive dependency in `chrono`, is to avoid using the default `oldtime` feature dependency of the `chrono` crate by disabling its default-features and manually specifying the required features instead.
#### Examples:
`Cargo.toml`:
```toml
chrono = { version = "0.4", default-features = false, features = ["serde"] }
```
```toml
chrono = { version = "0.4.22", default-features = false, features = ["clock"] }
```
Commandline:
```bash
cargo add chrono --no-default-features -F clock
```
Sources:
- https://github.com/chronotope/chrono/issues/602#issuecomment-1242149249
- https://github.com/vityafx/serde-aux/issues/21