rust-openssl: MdCtxRef::digest_final() writes past caller buffer with no length check

Description

A vulnerability, which was classified as critical, has been found in rust-openssl up to 0.10.77. This affects the function EVP_DigestFinal. Performing a manipulation results in stack-based buffer overflow. This vulnerability was named CVE-2026-41681. The attack may be initiated remotely.

Affected Products

Vendor	Product	Versions
rust-openssl	rust-openssl	>= 0.10.39, < 0.10.78

References

https://github.com/rust-openssl/rust-openssl/security/advisories/GHSA-ghm9-cr32-g9qj(x_refsource_CONFIRM)
https://github.com/rust-openssl/rust-openssl/pull/2608(x_refsource_MISC)
https://github.com/rust-openssl/rust-openssl/commit/826c3888b77add418b394770e2b2e3a72d9f92fe(x_refsource_MISC)
https://github.com/rust-openssl/rust-openssl/releases/tag/openssl-v0.10.78(x_refsource_MISC)

Related News (2 articles)

Tier A

Microsoft MSRC8h ago

CVE-2026-41681 rust-openssl: MdCtxRef::digest_final() writes past caller buffer with no length check

→ No new info (linked only)

Tier C

VulDB1d ago

CVE-2026-41681 | rust-openssl up to 0.10.77 EVP_DigestFinal stack-based overflow (GHSA-ghm9-cr32-g9qj)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

openssl@0.10.78

CWECWE-121

PublishedApr 22, 2026

Last enriched1d agov2

rust-openssl: MdCtxRef::digest_final() writes past caller buffer with no length check

Description

Affected Products

References

Related News (2 articles)

Community Vote

Related CVEs (4)

Pin to Dashboard

Verification

Vulnerability Timeline

Version History