A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic) via a fragmented TLS ClientHello message.
An exception is thrown from a function, but it is not caught.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Rust-rustls | Ubuntu | oracular | * |