CVE-2019-25002 · Vexday

CVE-2019-25002

EPSS 1.5%

An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://rustsec.org/advisories/RUSTSEC-2019-0026.html