vodozemac

crates.io2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting vodozemacpage 1 of 1

CVE-2024-34063LOWCVSS 2.5EG 2.5✓ Fixed in 0.6.0
2024-05-03
vodozemac is an implementation of Olm and Megolm in pure Rust. Versions 0.5.0 and 0.5.1 of vodozemac have degraded secret zeroization capabilities, due to changes in third-party cryptographic dependencies (the Dalek crates), which moved se…
CVE-2024-40640LOWCVSS 2.9EG 2.9✓ Fixed in 0.7.0
2024-07-17
vodozemac is an open source implementation of Olm and Megolm in pure Rust. Versions before 0.7.0 of vodozemac use a non-constant time base64 implementation for importing key material for Megolm group sessions and `PkDecryption` Ed25519 se…

Check whether vodozemac is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for vodozemac CVEs against the assets you own.

Start Free Scan →