Lucene search
K

188 matches found

Hacker One
Hacker One
added 2026/06/26 8:40 a.m.21 views

curl: mbedTLS / wolfSSL / rustls backends silently skip hostname verification when CURLOPT_SSL_VERIFYPEER=0

Summary When an application sets CURLOPTSSLVERIFYPEER=0 while keeping CURLOPTSSLVERIFYHOST=2 the default, the mbedTLS, wolfSSL, and rustls TLS backends silently skip the hostname-vs-certificate check. The OpenSSL, GnuTLS, and Schannel backends correctly preserve hostname checking under the same...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/05/21 1:18 a.m.19 views

CVE-2026-45784 vulnerabilities

Vulnerabilities for packages: valkey-ldap, deno, ztunnel-fips, rustup, bootc, typst, vector, sccache, rustls-openssl-client, sentry-cli, komodo, guestproxyagent, sdp-k8s-injector, rpm-sequoia, sqlx...

6.1AI score0.00019EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/21 1:18 a.m.25 views

GHSA-PHQJ-4MHP-Q6MQ vulnerabilities

Vulnerabilities for packages: valkey-ldap, deno, ztunnel-fips, rustup, bootc, typst, vector, sccache, rustls-openssl-client, sentry-cli, komodo, guestproxyagent, sdp-k8s-injector, rpm-sequoia, sqlx...

6.1AI score
Exploits0
Hacker One
Hacker One
added 2026/05/14 10:40 a.m.37 views

curl: rustls backend silently ignores CURLOPT_CRLFILE when native CA store is active

Hi all, When the rustls backend is configured to use the OS native CA store --ca-native / CURLSSLOPTNATIVECA, any CRL file supplied via --crlfile / CURLOPTCRLFILE is silently ignored. The option is accepted — CURLEOK from curleasysetopt, exit 0 from the command line — and revoked certificates pas...

5.8AI score
Exploits0
Hacker One
Hacker One
added 2026/05/13 11:33 p.m.42 views

curl: TLS verifyhost bypass in rustls, mbedTLS, and wolfSSL when verifypeer=0

The now-well-known CURLOPTSSLVERIFYHOST-bypass-when-CURLOPTSSLVERIFYPEER=0 defect exists in three of curl's TLS backends: rustls EXPERIMENTAL, mbedTLS, and wolfSSL DNS hostnames only. The documented contract at docs/libcurl/opts/CURLOPTSSLVERIFYPEER.md:57-59: The check that the host name in the...

5.8CVSS6.5AI score0.04888EPSS
Exploits0
Hacker One
Hacker One
added 2026/05/06 9:23 p.m.35 views

curl: CURLOPT_PROXY_CRLFILE / CURLOPT_PROXY_ISSUERCERT / CURLOPT_PROXY_ISSUERCERT_BLOB silently ignored on backends that don't support them

From the Mythos report 2026-05-06 F1. CURLOPTPROXYCRLFILE / CURLOPTPROXYISSUERCERT / CURLOPTPROXYISSUERCERTBLOB silently ignored on backends that don't support them — severity Low https://github.com/curl/curl/blob/455bebc2c7/lib/setopt.cL1786-L1797...

6.5CVSS6.5AI score0.01299EPSS
Exploits3
Chainguard
Chainguard
added 2026/05/06 7:17 p.m.12 views

CVE-2026-41898 vulnerabilities

Vulnerabilities for packages: valkey-ldap, deno, ztunnel-fips, rustup, bootc, typst, vector, sccache, rustls-openssl-client, sentry-cli, komodo, guestproxyagent, sdp-k8s-injector, rpm-sequoia, sqlx...

9.8CVSS6.1AI score0.00412EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/04 12:0 a.m.6 views

Security update for himmelblau (moderate)

openSUSE security update: security update for himmelblau ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20658-1 Rating: moderate References: bsc1261324 bsc1261613 Cross-References: CVE-2026-34397 CVSS scores: CVE-2026-34397 SUSE : 6.3...

7.2CVSS5.8AI score0.00158EPSS
Exploits1References2
Fedora
Fedora
added 2026/05/01 3:12 a.m.7 views

[SECURITY] Fedora 44 Update: rust-rustls-webpki-0.103.13-1.fc44

Web PKI X.509 Certificate Verification...

5.2AI score
Exploits0
Fedora
Fedora
added 2026/05/01 3:6 a.m.8 views

[SECURITY] Fedora 43 Update: rust-rustls-webpki-0.103.13-1.fc43

Web PKI X.509 Certificate Verification...

5.2AI score
Exploits0
Fedora
Fedora
added 2026/05/01 1:27 a.m.10 views

[SECURITY] Fedora 42 Update: rust-rustls-webpki-0.103.13-1.fc42

Web PKI X.509 Certificate Verification...

5.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.9 views

Fedora 43 : rust-rustls-webpki (2026-bea616fc84)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-bea616fc84 advisory. Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104. Tenable has extracted the preceding description block directly...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.12 views

Fedora 42 : rust-rustls-webpki (2026-204499102d)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-204499102d advisory. Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104. Tenable has extracted the preceding description block directly...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.5 views

Fedora 44 : rust-rustls-webpki (2026-8f36b2341e)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-8f36b2341e advisory. Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104. ---- Update to version 0.103.10. Addresses RUSTSEC-2026-0049...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/04/30 5:8 p.m.6 views

OPENSUSE-SU-2026:20658-1 Security update for himmelblau

This update for himmelblau fixes the following issues: Update to version 2.3.9+git0.a9fd29b. Security issues fixed: - CVE-2026-34397: Fixed naming collision that can lead to local privilege escalation bsc1261324. Other updates and bugfixes: - update aws-lc-sys to 0.39.0 for security fixes - updat...

7CVSS5.8AI score0.00158EPSS
Exploits1References3
OSV
OSV
added 2026/04/30 5:6 p.m.18 views

SUSE-SU-2026:21437-1 Security update for himmelblau

This update for himmelblau fixes the following issues: Update to version 2.3.9+git0.a9fd29b. Security issues fixed: - CVE-2026-34397: Fixed naming collision that can lead to local privilege escalation bsc1261324. Other updates and bugfixes: - update aws-lc-sys to 0.39.0 for security fixes - updat...

7CVSS5.8AI score0.00158EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2026/04/24 4:20 p.m.8 views

AskAI (=0.1.0), BiliupApi (>=0.1.0 <=0.1.7) +4020 more potentially affected by unknown CVE via rustls-webpki (>=0.100.3 <=0.102.8)

rustls-webpki CARGO version =0.100.3, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.26, =0.4.0, =0.1.0, =0.21.0-alpha.1, =0.1.11, =0.12.1, =0.13.0 - acme =0.2.1 and more Source cves: unknown CVE Source advisory: OSV:GHSA-82J2-J2CH-GFR8...

5.7AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/04/24 4:20 p.m.34 views

rustls-webpki: Denial of service via panic on malformed CRL BIT STRING

Summary bitstringflags in src/der.rs panics with an index-out-of-bounds when given a BIT STRING whose content is exactly 0x00 one byte: zero padding bits, zero data bytes. This is reachable through the public API BorrowedCertRevocationList::fromder via the issuingDistributionPoint CRL extension...

5.6AI score
Exploits0References3Affected Software1
OSV
OSV
added 2026/04/24 4:20 p.m.4 views

GHSA-82J2-J2CH-GFR8 rustls-webpki: Denial of service via panic on malformed CRL BIT STRING

Summary bitstringflags in src/der.rs panics with an index-out-of-bounds when given a BIT STRING whose content is exactly 0x00 one byte: zero padding bits, zero data bytes. This is reachable through the public API BorrowedCertRevocationList::fromder via the issuingDistributionPoint CRL extension...

7.5CVSS5.9AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/04/22 12:0 p.m.11 views

AskAI (=0.1.0), BiliupApi (>=0.1.0 <=0.1.7) +4020 more potentially affected by unknown CVE via rustls-webpki (>=0.100.3 <=0.102.8)

rustls-webpki CARGO version =0.100.3, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.26, =0.4.0, =0.1.0, =0.21.0-alpha.1, =0.1.11, =0.12.1, =0.13.0 - acme =0.2.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0104...

5.7AI score
Exploits0
Rows per page
Query Builder