Rust-openssl Security Vulnerabilities and Issues — Rust-openssl CVE List

Rust-openssl ProjectRust-openssl

7 matches found

CVE•added 2019/08/26 5:12 p.m.•65 views

CVE-2018-20997

CVE-2018-20997 affects the openssl crate for Rust prior to 0.10.9, describing a use-after-free in CMS Signing. The provided documents do not include patch versions, mitigations, or explicit exploitation details; severity is cited as high/critical in external references (e.g., CVSS), but no exploi...

9.8CVSS8.5AI score0.01744EPSS

CVE•added 2019/08/26 12:0 p.m.•63 views

CVE-2016-10931

CVE-2016-10931 pertains to the openssl crate for Rust prior to 0.9.0. The issue is a TLS/SSL MITM vulnerability caused by certificate verification being off by default and the absence of an API for hostname verification, enabling an attacker to interfere with connections. The available documents ...

8.1CVSS7.5AI score0.00745EPSS

CVE•added 2026/04/24 5:16 p.m.•32 views

CVE-2026-41676

CVE-2026-41676 affects rust-openssl bindings. From 0.9.27 to before 0.10.78, Deriver::derive and PkeyCtxRef::derive incorrectly pass in/out lengths to EVP_PKEY_derive by using len = buf.len(). On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore this incoming keylen and write the full share...

9.8CVSS5.4AI score0.00298EPSS

CVE•added 2026/04/24 5:19 p.m.•25 views

CVE-2026-41681

CVE-2026-41681 affects rust-openssl OpenSSL bindings. From 0.10.39 through before 0.10.78, EVP_DigestFinal() writes EVP_MD_CTX_size(ctx) to the output buffer. If the destination is smaller, MdCtxRef::digest_final() writes past the end, usually corrupting the stack, and this is reachable from safe...

9.8CVSS5.2AI score0.00373EPSS

CVE•added 2026/04/24 5:18 p.m.•17 views

CVE-2026-41678

CVE-2026-41678 affects rust-openssl bindings. The aes::unwrap_key() function contains an inverted assertion (out.len() + 8 = in_.len() - 8, allowing potential out-of-bounds writes when buffers are smaller than required. This vulnerability is limited to versions before 0.10.78; 0.10.78 fixes the i...

9.8CVSS5.5AI score0.00294EPSS

CVE•added 2026/04/24 5:17 p.m.•11 views

CVE-2026-41677

CVE-2026-41677 affects the rust-openssl bindings for Rust. From 0.9.0 up to before 0.10.78, the *_from_pem_callback APIs did not validate the length returned by the user’s callback, allowing a password callback that returns more data than the destination buffer to cause an over-read in some OpenS...

9.1CVSS5.5AI score0.00294EPSS

CVE•added 2026/04/24 5:20 p.m.•10 views

CVE-2026-41898

CVE-2026-41898 affects the rust-openssl bindings for Rust. The vulnerability arises in the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb, where the user closure’s returned usize was forwarde...

9.8CVSS5.6AI score0.00412EPSS