openssl Security Advisories - Cargo | Ecosyste.ms: Advisories

openssl

OpenSSL bindings

View on github.com · View on crates.io

Security Advisories for openssl in cargo

Moderate

7 months ago

rust-openssl Use-After-Free in `Md::fetch` and `Cipher::fetch` GSA_kwCzR0hTQS00ZmN2LXczcWMtcHBnZ84ABGdN

cargo openssl

Moderate

9 months ago

rust-openssl ssl::select_next_proto use after free GSA_kwCzR0hTQS1ycG1qLXJwZ2otcW1wbc4ABEGF

cargo openssl

Moderate

over 1 year ago

openssl's `MemBio::get_buf` has undefined behavior with empty buffers GSA_kwCzR0hTQS1xNDQ1LTdtMjMtcXJtd84AA-FM

cargo openssl

Moderate

almost 2 years ago

`openssl` `X509StoreRef::objects` is unsound GSA_kwCzR0hTQS14cGhmLWN4OGgtN3E5Z84AA3Zx

cargo openssl

Moderate

over 2 years ago

`openssl` `X509VerifyParamRef::set_host` buffer over-read GSA_kwCzR0hTQS14Y2Y3LXJ2bWgtZzZxNM4AAz-d

cargo openssl

Moderate

over 2 years ago

`openssl` `X509NameBuilder::build` returned object is not thread safe GSA_kwCzR0hTQS0zZ3hmLTlyNTgtMmdoZ84AAyUL

cargo openssl

High

over 2 years ago

`openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read GSA_kwCzR0hTQS05cXdnLWNyZzktbTJ2Y84AAyUK

cargo openssl

High

over 2 years ago

`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference GSA_kwCzR0hTQS02aGNmLWc2Z3ItaGhjcs4AAyUJ

cargo openssl

Critical

about 4 years ago

Use after free in openssl MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhqeGMtdmZ3Mi1jZzk2

cargo openssl

High

about 4 years ago

Improper Certificate Validation in openssl MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM0cDktZjRxMy1jNHI3

cargo openssl

Filter by Severity

Moderate 6 High 3 Critical 1