[Pkg-rust-maintainers] Bug#1102137: rust-openssl: RUSTSEC-2025-0022: Use-After-Free in Md::fetch and Cipher::fetch
Salvatore Bonaccorso
carnil at debian.org
Sat Apr 5 15:47:03 BST 2025
Source: rust-openssl
Version: 0.10.70-1
Severity: grave
Tags: security upstream
Forwarded: https://rustsec.org/advisories/RUSTSEC-2025-0022.html
X-Debbugs-Cc: carnil at debian.org, Debian Security Team <team at security.debian.org>
AFAIK, there is no CVE assigned yet for RUSTSEC-2025-0022 issue:
RUSTSEC-2025-0022:
| Use-After-Free in Md::fetch and Cipher::fetch
Reported/handled upstream in:
https://github.com/sfackler/rust-openssl/pull/2390
Regards,
Salvatore
More information about the Pkg-rust-maintainers
mailing list