Bug 2461605 (CVE-2026-41676) - CVE-2026-41676 rust-openssl: rust-openssl: Memory overflow allows arbitrary code execution or denial of service
Summary: CVE-2026-41676 rust-openssl: rust-openssl: Memory overflow allows arbitrary c...
Keywords:
Status: NEW
Alias: CVE-2026-41676
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2461805 2461806
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-04-24 18:01 UTC by OSIDB Bzimport
Modified: 2026-06-02 08:28 UTC (History)
89 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description OSIDB Bzimport 2026-04-24 18:01:48 UTC
rust-openssl provides OpenSSL bindings for the Rust programming language.  From 0.9.27 to before 0.10.78, Deriver::derive (and PkeyCtxRef::derive) sets len = buf.len() and passes it as the in/out length to EVP_PKEY_derive, relying on OpenSSL to honor it. On OpenSSL 1.1.x, X25519, X448, DH and HKDF-extract ignore the incoming *keylen, unconditionally writing the full shared secret (32/56/prime-size bytes). A caller passing a short slice gets a heap/stack overflow from safe code. OpenSSL 3.x providers do check, so this only impacts older OpenSSL. This vulnerability is fixed in 0.10.78.


Note You need to log in before you can comment on or make changes to this bug.