Description
A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string.
Exploits
No known exploits found for this CVE.
Search Exploit-DBReferences
secalert@redhat.com
https://access.redhat.com/security/cve/CVE-2025-3416secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2357560secalert@redhat.com
https://github.com/sfackler/rust-opensslsecalert@redhat.com
https://github.com/sfackler/rust-openssl/commit/87085bd67896b7f92e6de35d081f607a334beae4secalert@redhat.com
https://github.com/sfackler/rust-openssl/pull/2390secalert@redhat.com
https://rustsec.org/advisories/RUSTSEC-2025-0022.html