Tags 1068418 +wontfix
After a bunch of back and forth the upstream maintainer of this crate has
stated.
The goal of this crate is to implement direct, memory safe bindings to OpenSSL
APIs. Some of those APIs are poorly designed, but that is frankly OpenSSL's
problem, not my problem.
Source: rust-openssl
Version: 0.10.64-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/sfackler/rust-openssl/issues/2171
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerability was published for rust-openssl.
CVE-2024-3296[0]:
| A timing-
2 matches
Mail list logo
