PT-2025-15908 · Crates.Io · Openssl

Published

2025-04-04

·

Updated

2025-04-04

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
When a Some(...) value was passed to the properties argument of either of these functions, a use-after-free would result.
In practice this would nearly always result in OpenSSL treating the properties as an empty string (due to CString::drop's behavior).
The maintainers thank quitbug for reporting this vulnerability to us.
Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

RUSTSEC-2025-0022

Affected Products

Openssl