216.73.217.22

CVE-2026-41676

· Published 24/04/2026 18:16 · Modified 24/04/2026 18:16

Labels: CVE-2026-41676 2026-04-24CVE-2026-41676CWE-131[email protected]

Essential information

Published
24/04/2026 18:16
Modified
24/04/2026 18:16
Author
Creator
CVSS
7.2 HIGH (v3) 7.2 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
rust-openssl / rust-openssl cpe:2.3:a:rust-openssl:rust-openssl:<0.10.78:*:*:*:*:*:*:*
openssl / openssl cpe:2.3:a:openssl:openssl:<1.1:*:*:*:*:*:*:*

References