File tree Expand file tree Collapse file tree 1 file changed +24
-0
lines changed Expand file tree Collapse file tree 1 file changed +24
-0
lines changed Original file line number Diff line number Diff line change 1+ ``` toml
2+ [advisory ]
3+ id = " RUSTSEC-0000-0000"
4+ package = " openssl"
5+ date = " 2025-04-04"
6+ url = " https://github.com/sfackler/rust-openssl/pull/2390"
7+ categories = [" memory-corruption"
8+
9+ [versions ]
10+ patched = [" >= 0.10.72"
11+ unaffected = [" < 0.10.39"
12+
13+ [affected .functions ]
14+ "openssl::md::Md::fetch" = [" >= 0.10.39, < 0.10.72"
15+ "openssl::cipher::Cipher::fetch" = [" >= 0.10.39, < 0.10.72"
16+ ```
17+
18+ # Use-After-Free in ` Md::fetch ` and ` Cipher::fetch `
19+
20+ When a ` Some(...) ` value was passed to the ` properties ` argument of either of these functions, a use-after-free would result.
21+
22+ In practice this would nearly always result in OpenSSL treating the properties as an empty string (due to ` CString::drop ` 's behavior).
23+
24+ The maintainers thank [ quitbug] ( https://github.com/quitbug/ ) for reporting this vulnerability to us.
You can’t perform that action at this time.
0 commit comments