Primary

Context

rust-openssl Undefined Behavior Vulnerability in OCSP Responder URL Handling

Vulnerability

Patched

A vulnerability in rust-openssl versions 0.9.7 prior to 0.10.79 allows for undefined behavior when handling OCSP responder URLs from a certificate's AIA extension. The issue arises because the X509Ref::ocsp_responders method returns these URLs as OpensslString, which improperly assumes the raw bytes are valid UTF-8. OpenSSL does not guarantee that the underlying IA5String is ASCII, leading to the possibility of non-UTF-8 bytes causing safe Rust code to create a &str that violates the UTF-8 invariant.

Impact

This vulnerability can lead to undefined behavior in Rust applications using the affected rust-openssl version, potentially causing memory safety issues.

Remediation

Users can upgrade to rust-openssl version 0.10.79 or later to address this vulnerability.

Added: May 14, 2026, 9:46 PM

Updated: May 14, 2026, 9:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

2.5

exploitability

7.4

remediation

7.7

relevance

8.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

2.5

exploitability

7.4

remediation

7.7

relevance

8.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

rust-openssl Undefined Behavior Vulnerability in OCSP Responder URL Handling

Vulnerability

Impact

Remediation

Affected Products

rust-openssl

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating