CVE-2026-41676

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions rust-openssl versions 0.9.27 through 0.10.77

Description An issue exists where Deriver::derive() and PkeyCtxRef::derive() set the len variable to buf.len() and pass it as the in/out length to EVP PKEY derive. When using OpenSSL 1.1.x, the X25519, X448, DH, and HKDF-extract algorithms ignore the incoming *keylen and unconditionally write the full shared secret. This can result in a heap or stack overflow if a caller passes a short slice.

Recommendations Update to version 0.10.78. As a temporary workaround, restrict the use of Deriver::derive() and PkeyCtxRef::derive() when integrated with OpenSSL 1.1.x.

Fix

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-131

Related Identifiers

CVE-2026-41676

GHSA-PQF5-4PQQ-29F5

Affected Products

Openssl

Rust-Openssl

CVE-2026-41676

Weakness Enumeration

Related Identifiers

Affected Products

References · 16