# CVE-2026-41898

> Vulnerability · severity: **CRITICAL** (CVSS 9.8).

## Description

rust-openssl provides OpenSSL bindings for the Rust programming language.  From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the user closure's returned usize directly to OpenSSL without checking it against the &mut [u8] that was handed to the closure. This can lead to buffer overflows and other unintended consequences. This vulnerability is fixed in 0.10.78.

## Key facts

- **CVE ID:** CVE-2026-41898
- **Published:** 2026-04-24
- **CVSS severity:** CRITICAL
- **CVSS base score:** 9.8
- **CWE codes:** CWE-126, CWE-130

## Affected products

- `rust-openssl_project:rust-openssl`

## Primary sources

- NIST NVD: https://nvd.nist.gov/vuln/detail/CVE-2026-41898

## Citation

> AI Analytics. CVE-2026-41898. Retrieved 2026-07-19 from https://api.ai-analytics.org/cve/CVE-2026-41898. Derived from NIST NVD. Licensed CC0.

---

*[Dataset catalog](https://api.ai-analytics.org/datasets/) · [AI Analytics](https://api.ai-analytics.org/) · CC0 1.0*