/
DirectorySecurity AdvisoriesPricing
Sign In
Security Advisories

GHSA-xcf7-rvmh-g6q4

Published

Last updated

https://github.com/advisories/GHSA-xcf7-rvmh-g6q4

Severity

Unknown

Summary

openssl X509VerifyParamRef::set_host buffer over-read

Description

When this function was passed an empty string, openssl would attempt to call strlen on it, reading arbitrary memory until it reached a NUL byte.

References

  • https://github.com/advisories/GHSA-xcf7-rvmh-g6q4
  • https://github.com/sfackler/rust-openssl/issues/1965
  • https://github.com/sfackler/rust-openssl/pull/1968
  • https://github.com/sfackler/rust-openssl
  • https://rustsec.org/advisories/RUSTSEC-2023-0044.html

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

FedRAMPPCICVE RemediationGolden Images

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation