Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2026-21895

Опубликовано: 08 янв. 2026
Источник: debian
EPSS Низкий

Описание

The `rsa` crate is an RSA implementation written in rust. Prior to version 0.9.10, when creating a RSA private key from its components, the construction panics instead of returning an error when one of the primes is `1`. Version 0.9.10 fixes the issue.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
rust-rsafixed0.9.10-1package
rust-rsano-dsatrixiepackage

Примечания

  • https://github.com/RustCrypto/RSA/security/advisories/GHSA-9c48-w39g-hm26

  • Fixed by: https://github.com/RustCrypto/RSA/commit/2926c91bef7cb14a7ccd42220a698cf4b1b692f7 (v0.9.10)

EPSS

Процентиль: 5%
0.0002
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2026-21895

CVSS3: 5.3
ubuntu
3 месяца назад

The `rsa` crate is an RSA implementation written in rust. Prior to version 0.9.10, when creating a RSA private key from its components, the construction panics instead of returning an error when one of the primes is `1`. Version 0.9.10 fixes the issue.

redhat логотип

CVE-2026-21895

CVSS3: 5.5
redhat
3 месяца назад

The `rsa` crate is an RSA implementation written in rust. Prior to version 0.9.10, when creating a RSA private key from its components, the construction panics instead of returning an error when one of the primes is `1`. Version 0.9.10 fixes the issue.

nvd логотип

CVE-2026-21895

CVSS3: 5.3
nvd
3 месяца назад

The `rsa` crate is an RSA implementation written in rust. Prior to version 0.9.10, when creating a RSA private key from its components, the construction panics instead of returning an error when one of the primes is `1`. Version 0.9.10 fixes the issue.

msrc логотип

CVE-2026-21895

msrc
2 месяца назад

rsa crate has potential panic on a prime being equal to 1

github логотип

GHSA-9c48-w39g-hm26

github
3 месяца назад

rsa crate has potential panic on a prime being equal to 1

EPSS

Процентиль: 5%
0.0002
Низкий