NVD please read this and stop harassing my users

CVSS is fundamentally broken and irresponsible. Fixes CVE-2023-34411.
kornelski · Jun 13, 2023 · c4705dd · c4705dd
1 parent 2776563
commit c4705dd
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 1 deletion.
diff --git a/Cargo.toml b/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "xml-rs"
-version = "0.8.14"
+version = "0.8.15-cvss-cries-wolf"
 authors = ["Vladimir Matveev <vmatveev@citrine.cc>"]
 license = "MIT"
 description = "An XML library in pure Rust"

diff --git a/src/lib.rs b/src/lib.rs
@@ -5,6 +5,9 @@
 #![allow(clippy::module_name_repetitions)]
 
 //! This crate currently provides an almost XML 1.0/1.1-compliant pull parser.
+//!
+//! Please note that functions of this parser may panic.
+//! If a panic could cause a Denial Of Service in your codebase, *you're* responsible for wrapping access to this library in `catch_unwind`.
 
 #[cfg(doctest)]
 doc_comment::doctest!("../README.md");