CVE-2026-41678

Name of the Vulnerable Software and Affected Versions rust-openssl versions prior to 0.10.78

Description The aes::unwrap key() function contains an incorrect assertion regarding the output buffer size. It checks that out.len() + 8 <= in .len(), which is the reverse of the intended invariant out.len() >= in .len() - 8. Consequently, the function accepts buffers that are too small and rejects larger ones. If a buffer smaller than required is provided, the function writes past the end of out by in .len() - 8 - out.len() bytes, resulting in an out-of-bounds write from a safe public function. This can be triggered in applications using AES keywrap that allow attacker-controlled buffer sizes.

Recommendations Update to version 0.10.78.