VDB
GO-2025-3678
GO-2025-3678
PUBLISHED
Ring: some aes functions may panic when overflow checking is enabled in ring in github.com/briansmith/ring
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | briansmith/ring | 0, 0 |
Timeline
- May 15, 2025 CVE Published
- Feb 4, 2026 CVE Updated
- May 1, 2026 Security Advisory
References
- https://nvd.nist.gov/vuln/detail/CVE-2025-4432 advisory
- https://github.com/briansmith/ring/commit/ec2d3cf1d91f148c84e4806b4f0b3c98f6df3b38 patch
- https://github.com/briansmith/ring/pull/2447 patch
- https://bugzilla.redhat.com/show_bug.cgi?id=2350655 report
- https://access.redhat.com/security/cve/CVE-2025-4432 url
- https://github.com/briansmith/ring url
- https://github.com/briansmith/ring/blob/main/RELEASES.md#version-01712-2025-03-05 url
- https://rustsec.org/advisories/RUSTSEC-2025-0009.html url