Removed vulnerable mio 0.7.7 by upgrading crates to use mio 0.8+

Summary: The 3P Library Vulnerability Remediation Team is dedicated to remediating high-risk external libraries at Meta using both manual and automated processes. Older versions of this library have been identified as risky, and this diff stack is intended to upgrade the library to a recommended version. ------------------- We kindly request your help with the diff review. Please commandeer this diff stack if specific merges need to be added or if there are any build or dependency failures. ------------------ Vulnerability Information for the existing package : https://www.internalfb.com/intern/vulnerability_management/vulnerabilities/CVE-2024-27308 TPMS Link : https://fburl.com/third_party_metadata/mi3rgy1h -------------------- This diff: => Edited third-party/rust/Cargo.toml in fbsource to remove mio 0.7.7 and use recommend version 0.8+. => Executed Reindeer through fbcode/common/rust/tools/reindeer/vendor in fbsource. => ls third-party/rust/vendor/mio-[0-9]* -d third-party/rust/vendor/mio-0.6.23 third-party/rust/vendor/mio-0.8.11 third-party/rust/vendor/mio-1.0.2 => fbcode/common/rust/tools/scripts/third-party-check.sh Differential Revision: D64556023 fbshipit-source-id: 7c9387478e0a3a1d1876ec4a5a17599510994711
facebookincubator · Oct 21, 2024 · 59ac5cc · 59ac5cc
1 parent ed7f7f2
commit 59ac5cc
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/below/view/Cargo.toml b/below/view/Cargo.toml
@@ -13,7 +13,7 @@ license = "Apache-2.0"
 anyhow = "1.0.86"
 chrono = { version = "0.4", features = ["clock", "serde", "std"], default-features = false }
 common = { package = "below-common", version = "0.8.1", path = "../common" }
-crossterm = { version = "0.27.0", features = ["event-stream"] }
+crossterm = { version = "0.28", features = ["event-stream"] }
 cursive = { version = "0.20.0", features = ["crossterm-backend"], default-features = false }
 cursive_buffered_backend = "0.6.1"
 enum-iterator = "1.4.1"