VYPR

crates.io package

russh-cryptovec

pkg:cargo/russh-cryptovec

Vulnerabilities (1)

  • CVE-2026-46673HigJun 10, 2026
    affected < 0.60.3fixed 0.60.3

    Russh is a Rust SSH client & server library. Prior to version 0.60.3, CryptoVec used unchecked capacity growth, unchecked length arithmetic, and unsafe allocation/locking paths. In current russh releases, local SSH agent peers could still feed attacker-controlled frame lengths in