RUSTSEC-2025-0134
ADVISORY - rustsecSummary
The rustls-pemfile crate is no longer maintained. The repository has been archived since August 2025, and users are encouraged to depend directly on the underlying PEM parsing code included in rustls-pki-types since 1.9.0. The latest version of rustls-pemfile is in fact a thin wrapper around the same code used in rustls-pki-types, so migrating should be straightforward.
The new API is represented by the PemObject trait, which provides methods for
reading a single or multiple PEM objects from a file or byte slice.
Common Weakness Enumeration (CWE)
RustSec
CREATED
UPDATED
ADVISORY IDRUSTSEC-2025-0134
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
| Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
|---|---|---|---|---|---|
| rustls-pemfile | cargo | - | - | >=0.0.0-0 | Not yet available |
Severity and metrics
No CVSS data available from this advisory.