RUSTSEC-2022-0054

Source
https://rustsec.org/advisories/RUSTSEC-2022-0054
Import Source
https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2022-0054.json
JSON Data
https://api.osv.dev/v1/vulns/RUSTSEC-2022-0054
Aliases
Published
2022-05-11T12:00:00Z
Modified
2023-11-08T04:22:41.320727Z
Summary
wee_alloc is Unmaintained
Details

Two of the maintainers have indicated that the crate may not be maintained.

The crate has open issues including memory leaks and may not be suitable for production use.

It may be best to switch to the default Rust standard allocator on wasm32 targets.

Last release seems to have been three years ago.

Possible Alternative(s)

The below list has not been vetted in any way and may or may not contain alternatives;

  • Rust standard [default allocator] on wasm32-target

Honorable Mention(s)

The below may serve to educate on potential future alternatives:

Database specific
{
    "license": "CC0-1.0"
}
References

Affected packages

crates.io / wee_alloc

Package

Affected ranges

Type
SEMVER
Events
Introduced
0.0.0-0

Ecosystem specific

{
    "affected_functions": null,
    "affects": {
        "os": [],
        "functions": [],
        "arch": []
    }
}

Database specific

{
    "cvss": null,
    "informational": "unmaintained",
    "categories": []
}