RUSTSEC-2022-0048
xml-rs is Unmaintained
This advisory has been withdrawn and should be ignored. It is kept only for reference.
- Reported
-
- Issued
-
- Package
-
xml-rs
(crates.io)
- Type
-
INFO
Unmaintained
- Details
-
https://github.com/netvl/xml-rs/issues
- Patched
-
no patched versions
Description
xml-rs is a XML parser has open issues around parsing including integer
overflows / panics that may or may not be an issue with untrusted data.
Together with these open issues with Unmaintained status xml-rs
may or may not be suited to parse untrusted data.
Alternatives