Revert "bump openssl" #220
GitHub Actions / Security audit
failed
Nov 25, 2023 in 0s
Security advisories found
1 advisory(ies)
Details
Vulnerabilities
RUSTSEC-2023-0044
opensslX509VerifyParamRef::set_hostbuffer over-read
| Details | |
|---|---|
| Package | openssl |
| Version | 0.10.52 |
| URL | sfackler/rust-openssl#1965 |
| Date | 2023-06-20 |
| Patched versions | >=0.10.55 |
When this function was passed an empty string, openssl would attempt to call strlen on it, reading arbitrary memory until it reached a NUL byte.
Loading