CVE-2026-41681
ADVISORY - githubSummary
EVP_DigestFinal() always writes EVP_MD_CTX_size(ctx) to the out buffer. If out is smaller than that, MdCtxRef::digest_final() writes past its end, usually corrupting the stack. This is reachable from safe Rust.
Common Weakness Enumeration (CWE)
ADVISORY - github
Stack-based Buffer Overflow
Sign in to Docker Scout
See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.
Sign in