RUSTSEC-2024-0370

ADVISORY - rustsec

Summary

proc-macro-error's maintainer seems to be unreachable, with no commits for 2 years, no releases pushed for 4 years, and no activity on the GitLab repo or response to email.

proc-macro-error also depends on syn 1.x, which may be bringing duplicate dependencies into dependant build trees.

Possible Alternative(s)

manyhow
proc-macro-error2
proc-macro2-diagnostics

Common Weakness Enumeration (CWE)

Impacted images

Advisories

RustSec

CREATED

1 year ago

UPDATED

1 year ago

ADVISORY IDRUSTSEC-2024-0370⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
proc-macro-error	cargo	-	-	>=0.0.0-0	Not yet available

Severity and metrics

No CVSS data available from this advisory.