Releases111
Frequency1 month 2 days
Last Release
Downloads757M
Rustls is a modern TLS library written in Rust.
CVE History
| CVE | Affected | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|---|
| = 0.23.13 | 5.3 MEDIUM | — | ||
A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message. | ||||
| < 0.16.0 | — | 5 MEDIUM | ||
rustls-mio/examples/tlsserver.rs in the rustls crate before 0.16.0 for Rust allows attackers to cause a denial of service (loop of conn_event and ready) by arranging for a client to never be writable. | ||||