10 matches found
ate (>=0.1.0 <=0.8.0), ate-auth (>=1.1.0 <=1.6.0) +73 more potentially affected by unknown CVE via pqcrypto-traits (>=0.1.1 <=0.3.5)
pqcrypto-traits CARGO version =0.1.1, =0.1.0, =1.1.0, =1.0.0, =1.1.0, =2.0.0, =0.1.2-alpha, =0.1.4, =0.1.1, =0.1.0, =0.1.1, =0.1.0, =0.1.2 - envencryptiontool =0.9.17 - ever-crypto =0.1.0 - hanzo-agentic =1.1.21 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0162...
b4ae (>=2.1.1 <=2.1.3), clatter (>=2.0.0 <=2.2.0) +6 more potentially affected by unknown CVE via pqcrypto-mlkem (=0.1.1)
pqcrypto-mlkem CARGO version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on pqcrypto-mlkem and may be impacted: - b4ae =2.1.1, =2.0.0, =0.1.0, =0.18.0, =0.1.0, =0.1.9 - zipher =0.1.8 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-01...
CVE-2026-24785
Clatter is a nostd compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0 have a protocol compliance vulnerability. The library allowed post-quantum handshake patterns that violated the PSK validity rule Noise Protocol Framework...
CVE-2026-24785
Clatter is a nostd compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0 have a protocol compliance vulnerability. The library allowed post-quantum handshake patterns that violated the PSK validity rule Noise Protocol Framework...
Clatter encryption issue vulnerabilities
Clatter is a Rust library developed by Joni Lepistö. Versions of Clatter prior to 2.2.0 had an encryption-related vulnerability. This vulnerability stemmed from a handshake mode that allowed violations of PSK validity rules, potentially leading to key reuse...
CVE-2026-24785
Clatter (no_std Rust implementation of Noise with post-quantum support) had a PSK validity rule violation in versions before 2.2.0, allowing certain post-quantum handshake patterns (e.g., noise_pqkk_psk0, noise_pqkn_psk0, noise_pqnk_psk0, noise_pqnn_psk0 and some hybrids) to bypass the PSK validi...
CVE-2026-24785
Clatter is a nostd compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0 have a protocol compliance vulnerability. The library allowed post-quantum handshake patterns that violated the PSK validity rule Noise Protocol Framework...
CVE-2026-24785 Clatter has a PSK Validity Rule Violation issue
Clatter is a nostd compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0 have a protocol compliance vulnerability. The library allowed post-quantum handshake patterns that violated the PSK validity rule Noise Protocol Framework...
CVE-2026-24785 Clatter has a PSK Validity Rule Violation issue
Clatter is a nostd compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0 have a protocol compliance vulnerability. The library allowed post-quantum handshake patterns that violated the PSK validity rule Noise Protocol Framework...
PT-2026-5038
Clatter is a no std compatible, pure Rust implementation of the Noise protocol framework with post-quantum support. Versiosn prior to2.2.0 have a protocol compliance vulnerability. The library allowed post-quantum handshake patterns that violated the PSK validity rule Noise Protocol Framework...