Lucene search
+L

10 matches found

osv
osv
added 2026/07/09 6:55 p.m.2 views

SUSE-SU-2026:2831-1 Security update for rustup

This update for rustup fixes the following issues Security issues: - CVE-2024-12224: idna: idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243862. - CVE-2025-58160: tracing-subscriber: Tracing log pollution bsc1249008. - CVE-2026-25727: time: parsing of user-provid...

9.8CVSS7.1AI score0.00412EPSS
Exploits1References25
osv
osv
added 2026/07/09 6:21 p.m.2 views

SUSE-SU-2026:2826-1 Security update for rust-keylime

This update for rust-keylime fixes the following issues - Update to version 0.2.9+49 - Update openssl to 0.10.81 - CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270174. - CVE-2026-41677: openssl: out-of-bounds read in PEM password...

9.8CVSS6.6AI score0.00412EPSS
Exploits0References18
osv
osv
added 2026/07/09 9:6 a.m.3 views

OPENSUSE-SU-2026:21274-1 Security update for rust-keylime

This update for rust-keylime fixes the following issues: Update to version 0.2.9+49. Security issues fixed: - CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270174. - CVE-2026-41677: openssl: out-of-bounds read in PEM password callbac...

9.8CVSS6.2AI score0.00412EPSS
Exploits0References17
ibm
ibm
added 2026/05/29 10:7 a.m.28 views

Security Bulletin: IBM Edge Data Collector uses openssl-0.10.76.crate which is vulnerable to CVE-2026-41898

Summary IBM Edge Data Collector Component uses openssl-0.10.76.crate which is vulnerable to CVE-2026-41898. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2026-41898 DESCRIPTION: rust-openssl provides OpenSSL bindings for the Rust programming...

8.3CVSS6AI score0.00412EPSS
Exploits0Affected Software1
nessus
nessus
added 2026/05/27 12:0 a.m.14 views

Fedora 44 : rust-coreos-installer (2026-eeb94c0e5e)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-eeb94c0e5e advisory. Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: - CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 -...

9.8CVSS5.9AI score0.00412EPSS
Exploits0References8
nessus
nessus
added 2026/05/19 12:0 a.m.9 views

Fedora 43 : rust-oo7-cli (2026-9695dd338f)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9695dd338f advisory. Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: - CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 -...

9.8CVSS5.9AI score0.00412EPSS
Exploits0References8
nessus
nessus
added 2026/05/19 12:0 a.m.14 views

Fedora 44 : rust-oo7-cli (2026-8e53f4aa95)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-8e53f4aa95 advisory. Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: - CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 -...

9.8CVSS5.9AI score0.00412EPSS
Exploits0References8
nessus
nessus
added 2026/05/19 12:0 a.m.22 views

Fedora 44 : rust-rpki (2026-aac0adf7f7)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-aac0adf7f7 advisory. Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: - CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 -...

9.8CVSS5.9AI score0.00412EPSS
Exploits0References8
cgr
cgr
added 2026/05/06 7:17 p.m.14 views

CVE-2026-41898 vulnerabilities

Vulnerabilities for packages: guestproxyagent, deno, sdp-k8s-injector, rpm-sequoia, rustls-openssl-client, komodo, vector, sccache, valkey-ldap, sentry-cli, sqlx, bootc, typst, ztunnel-fips, rustup...

8.3CVSS6.1AI score0.00412EPSS
Exploits0
debiancve
debiancve
added 2026/04/24 5:20 p.m.30 views

CVE-2026-41898

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::setpskclientcallback, setpskservercallback, setcookiegeneratecb, and setstatelesscookiegeneratecb forwarded the user closure's returned usize...

9.8CVSS5.5AI score0.00412EPSS
Exploits0
Rows per page
Query Builder