CVE-2025-3416
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-3416
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-3416.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-3416
- Related
- Published
- 2025-04-08T19:15:53Z
- Modified
- 2025-04-13T17:50:44.731696Z
- Downstream
- Severity
-
- 3.7 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string.
- References
-
- https://rustsec.org/advisories/RUSTSEC-2025-0022.html
- https://github.com/sfackler/rust-openssl/commit/87085bd67896b7f92e6de35d081f607a334beae4
- https://bugzilla.redhat.com/show_bug.cgi?id=2357560
- https://access.redhat.com/security/cve/CVE-2025-3416
- https://github.com/sfackler/rust-openssl
- https://github.com/sfackler/rust-openssl/pull/2390
- https://security-tracker.debian.org/tracker/CVE-2025-3416
Affected packages
Debian:11 / rust-openssl
Package
- Name
- rust-openssl
- Purl
- pkg:deb/debian/rust-openssl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:12 / rust-openssl
Package
- Name
- rust-openssl
- Purl
- pkg:deb/debian/rust-openssl?arch=source
Debian:13 / rust-openssl
Package
- Name
- rust-openssl
- Purl
- pkg:deb/debian/rust-openssl?arch=source
Git / github.com/sfackler/rust-openssl
Affected ranges
- Type
- GIT
- Repo
- https://github.com/sfackler/rust-openssl
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
openssl-errors-v0.*
openssl-errors-v0.1.0
openssl-errors-v0.2.0
openssl-macros-v0.*
openssl-macros-v0.1.0
openssl-macros-v0.1.1
openssl-sys-v0.*
openssl-sys-v0.7.15
openssl-sys-v0.7.16
openssl-sys-v0.7.17
openssl-sys-v0.9.100
openssl-sys-v0.9.101
openssl-sys-v0.9.102
openssl-sys-v0.9.103
openssl-sys-v0.9.104
openssl-sys-v0.9.105
openssl-sys-v0.9.106
openssl-sys-v0.9.24
openssl-sys-v0.9.25
openssl-sys-v0.9.26
openssl-sys-v0.9.27
openssl-sys-v0.9.28
openssl-sys-v0.9.30
openssl-sys-v0.9.31
openssl-sys-v0.9.32
openssl-sys-v0.9.33
openssl-sys-v0.9.35
openssl-sys-v0.9.36
openssl-sys-v0.9.37
openssl-sys-v0.9.38
openssl-sys-v0.9.39
openssl-sys-v0.9.40
openssl-sys-v0.9.41
openssl-sys-v0.9.42
openssl-sys-v0.9.43
openssl-sys-v0.9.44
openssl-sys-v0.9.45
openssl-sys-v0.9.46
openssl-sys-v0.9.47
openssl-sys-v0.9.48
openssl-sys-v0.9.49
openssl-sys-v0.9.50
openssl-sys-v0.9.51
openssl-sys-v0.9.52
openssl-sys-v0.9.53
openssl-sys-v0.9.54
openssl-sys-v0.9.55
openssl-sys-v0.9.56
openssl-sys-v0.9.57
openssl-sys-v0.9.58
openssl-sys-v0.9.59
openssl-sys-v0.9.60
openssl-sys-v0.9.61
openssl-sys-v0.9.62
openssl-sys-v0.9.63
openssl-sys-v0.9.64
openssl-sys-v0.9.65
openssl-sys-v0.9.66
openssl-sys-v0.9.67
openssl-sys-v0.9.68
openssl-sys-v0.9.69
openssl-sys-v0.9.70
openssl-sys-v0.9.71
openssl-sys-v0.9.72
openssl-sys-v0.9.73
openssl-sys-v0.9.74
openssl-sys-v0.9.75
openssl-sys-v0.9.76
openssl-sys-v0.9.77
openssl-sys-v0.9.78
openssl-sys-v0.9.79
openssl-sys-v0.9.80
openssl-sys-v0.9.81
openssl-sys-v0.9.82
openssl-sys-v0.9.83
openssl-sys-v0.9.84
openssl-sys-v0.9.85
openssl-sys-v0.9.86
openssl-sys-v0.9.87
openssl-sys-v0.9.88
openssl-sys-v0.9.89
openssl-sys-v0.9.90
openssl-sys-v0.9.91
openssl-sys-v0.9.92
openssl-sys-v0.9.93
openssl-sys-v0.9.94
openssl-sys-v0.9.95
openssl-sys-v0.9.96
openssl-sys-v0.9.97
openssl-sys-v0.9.98
openssl-sys-v0.9.99
openssl-v0.*
openssl-v0.10.0
openssl-v0.10.1
openssl-v0.10.10
openssl-v0.10.11
openssl-v0.10.12
openssl-v0.10.13
openssl-v0.10.14
openssl-v0.10.15
openssl-v0.10.16
openssl-v0.10.17
openssl-v0.10.18
openssl-v0.10.19
openssl-v0.10.2
openssl-v0.10.20
openssl-v0.10.21
openssl-v0.10.22
openssl-v0.10.23
openssl-v0.10.24
openssl-v0.10.25
openssl-v0.10.26
openssl-v0.10.27
openssl-v0.10.28
openssl-v0.10.29
openssl-v0.10.3
openssl-v0.10.30
openssl-v0.10.31
openssl-v0.10.32
openssl-v0.10.33
openssl-v0.10.34
openssl-v0.10.35
openssl-v0.10.36
openssl-v0.10.37
openssl-v0.10.38
openssl-v0.10.39
openssl-v0.10.4
openssl-v0.10.40
openssl-v0.10.41
openssl-v0.10.42
openssl-v0.10.43
openssl-v0.10.44
openssl-v0.10.45
openssl-v0.10.46
openssl-v0.10.47
openssl-v0.10.48
openssl-v0.10.49
openssl-v0.10.5
openssl-v0.10.50
openssl-v0.10.51
openssl-v0.10.52
openssl-v0.10.53
openssl-v0.10.54
openssl-v0.10.55
openssl-v0.10.56
openssl-v0.10.57
openssl-v0.10.58
openssl-v0.10.59
openssl-v0.10.6
openssl-v0.10.60
openssl-v0.10.61
openssl-v0.10.62
openssl-v0.10.63
openssl-v0.10.64
openssl-v0.10.65
openssl-v0.10.66
openssl-v0.10.67
openssl-v0.10.68
openssl-v0.10.69
openssl-v0.10.7
openssl-v0.10.70
openssl-v0.10.71
openssl-v0.10.8
openssl-v0.10.9
openssl-v0.8.0
openssl-v0.8.1
openssl-v0.8.2
openssl-v0.8.3
openssl-v0.9.27
rust-0.*
rust-0.10
rust-0.11
rust-0.12
v0.*
v0.0.2
v0.1
v0.1.0
v0.1.1
v0.2.0
v0.2.1
v0.2.10
v0.2.11
v0.2.12
v0.2.13
v0.2.14
v0.2.15
v0.2.16
v0.2.17
v0.2.18
v0.2.2
v0.2.3
v0.2.4
v0.2.5
v0.2.6
v0.2.7
v0.2.8
v0.2.9
v0.3.0
v0.3.1
v0.3.2
v0.3.3
v0.3.4
v0.3.5
v0.3.6
v0.4.0
v0.4.1
v0.4.2
v0.4.3
v0.5.0
v0.5.2
v0.5.3
v0.5.4
v0.5.5
v0.6.0
v0.6.1
v0.6.2
v0.6.3
v0.6.4
v0.6.5
v0.6.6
v0.6.7
v0.7.0
v0.7.1
v0.7.10
v0.7.11
v0.7.12
v0.7.13
v0.7.14
v0.7.2
v0.7.3
v0.7.4
v0.7.5
v0.7.6
v0.7.7
v0.7.8
v0.7.9
v0.9.0
v0.9.1
v0.9.10
v0.9.11
v0.9.12
v0.9.13
v0.9.14
v0.9.15
v0.9.16
v0.9.17
v0.9.18
v0.9.19
v0.9.2
v0.9.20
v0.9.21
v0.9.22
v0.9.23
v0.9.3
v0.9.4
v0.9.5
v0.9.6
v0.9.7
v0.9.8
v0.9.9