/
DirectorySecurity Advisories
Sign In
Security Advisories

GHSA-xphf-cx8h-7q9g

Published

Last updated

https://github.com/advisories/GHSA-xphf-cx8h-7q9g

Severity

Unknown

Summary

openssl X509StoreRef::objects is unsound

Description

This function returned a reference into an OpenSSL datastructure, but there was no way to ensure OpenSSL would not mutate the datastructure behind one's back.

Use of this function should be replaced with X509StoreRef::all_certificates.

References

  • https://github.com/advisories/GHSA-xphf-cx8h-7q9g
  • https://github.com/sfackler/rust-openssl/issues/2096
  • https://github.com/sfackler/rust-openssl/commit/cf9681a55cabd4cb9f1475bde17b5079f2a0384e
  • https://github.com/sfackler/rust-openssl
  • https://rustsec.org/advisories/RUSTSEC-2023-0072.html

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation