CVE-2021-45696

Опубликовано: 27 дек. 2021

Источник: debian

Описание

An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. Hashes of long messages may be incorrect when the AVX2-accelerated backend is used.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
rust-sha2	not-affected			package

Примечания

https://rustsec.org/advisories/RUSTSEC-2021-0100.html

Связанные уязвимости

CVE-2021-45696

CVSS3: 9.8

nvd

около 4 лет назад

An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. Hashes of long messages may be incorrect when the AVX2-accelerated backend is used.

GHSA-fc7x-2cmc-8j2g

CVSS3: 9.8

github

около 4 лет назад

Incorrect hash in sha2