diff options
author | Nora Widdecke <nora@sequoia-pgp.org> | 2021-02-01 18:43:09 +0100 |
---|---|---|
committer | Nora Widdecke <nora@sequoia-pgp.org> | 2021-02-10 17:39:45 +0100 |
commit | d4e54fdd311e2c83887c76f690768fad5d67095d (patch) | |
tree | 8ef4d289a9ca55e93a7fec5dd84505cebf0779cf /Cargo.lock | |
parent | 233d5dc3567bc094d91ec18001bc4da43d55d021 (diff) |
Update smallvec to 1.6.1.
- smallvec < 1.6.1 has a vulnerability in SmallVec::insert_many.
Our two dependencies that use smallvec, rusqlite 0.24.2 and
num-bigint-dig 0.6.1, do not seem to use that specific function.
Bumping the dependency to be safe.
- https://rustsec.org/advisories/RUSTSEC-2021-0003
- https://github.com/servo/rust-smallvec/issues/252
- Fixes #661
Diffstat (limited to 'Cargo.lock')
-rw-r--r-- | Cargo.lock | 4 |
1 files changed, 2 insertions, 2 deletions
@@ -2059,9 +2059,9 @@ checksum = "c111b5bd5695e56cffe5129854aa230b39c93a305372fdbb2668ca2394eea9f8" [[package]] name = "smallvec" -version = "1.5.1" +version = "1.6.1" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "ae524f056d7d770e174287294f562e95044c68e88dec909a00d2094805db9d75" +checksum = "fe0f37c9e8f3c5a4a66ad655a93c74daac4ad00c441533bf5c6e7990bb42604e" [[package]] name = "socket2" |