Описание
A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Trusted Artifact Signer | rhtas/tuffer-rhel9 | Not affected | ||
| Red Hat Trusted Artifact Signer | rhtas/tuftool-rhel9 | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-248
https://bugzilla.redhat.com/show_bug.cgi?id=2328732rustls: rustls network-reachable panic in `Acceptor::accept`
EPSS
Процентиль: 44%
0.0022
Низкий
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.3
ubuntu
около 1 года назад
A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message.
CVSS3: 5.3
nvd
около 1 года назад
A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message.
CVSS3: 5.3
msrc
5 месяцев назад
Rustls: rustls network-reachable panic in `acceptor::accept`
CVSS3: 5.3
debian
около 1 года назад
A flaw was found in Rustls 0.23.13 and related APIs. This vulnerabilit ...
EPSS
Процентиль: 44%
0.0022
Низкий
5.3 Medium
CVSS3