{"id":"GO-2025-3678","summary":"Ring: some aes functions may panic when overflow checking is enabled in ring in github.com/briansmith/ring","details":"Ring: some aes functions may panic when overflow checking is enabled in ring in github.com/briansmith/ring","aliases":["CVE-2025-4432","GHSA-4p46-pwfr-66x6","GHSA-c86p-w88r-qvqr","RUSTSEC-2025-0009"],"modified":"2026-05-30T00:59:10.492991268Z","published":"2025-05-15T20:00:12Z","related":["CGA-4cq4-55wr-cwx5","CGA-9m7g-cwwp-hr9v"],"database_specific":{"url":"https://pkg.go.dev/vuln/GO-2025-3678","review_status":"UNREVIEWED"},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-4432"},{"type":"FIX","url":"https://github.com/briansmith/ring/commit/ec2d3cf1d91f148c84e4806b4f0b3c98f6df3b38"},{"type":"FIX","url":"https://github.com/briansmith/ring/pull/2447"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2350655"},{"type":"WEB","url":"https://access.redhat.com/security/cve/CVE-2025-4432"},{"type":"WEB","url":"https://github.com/briansmith/ring"},{"type":"WEB","url":"https://github.com/briansmith/ring/blob/main/RELEASES.md#version-01712-2025-03-05"},{"type":"WEB","url":"https://rustsec.org/advisories/RUSTSEC-2025-0009.html"}],"affected":[{"package":{"name":"github.com/briansmith/ring","ecosystem":"Go","purl":"pkg:golang/github.com/briansmith/ring"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2025-3678.json"}}],"schema_version":"1.7.5"}