[PR #2255] Bump rust version to mitigate CVE-2022-21658 #3284

New Issue

Closed

opened 2025-10-09 18:20:29 +03:00 by OVERLORD · 0 comments

OVERLORD commented 2025-10-09 18:20:29 +03:00

Owner

Copy Link

Original Pull Request: https://github.com/dani-garcia/vaultwarden/pull/2255

State: closed
Merged: Yes

---

CVE-2022-21658 is a vulnerability in the Rust standard library. Updating to the latest rust nightly brings in the changes from Rust 1.58.1 which mitigate this issue.

See also Rust#93110. Crucially, this may require further attention.

**Original Pull Request:** https://github.com/dani-garcia/vaultwarden/pull/2255 **State:** closed **Merged:** Yes --- [CVE-2022-21658](https://www.cve.org/CVERecord?id=CVE-2022-21658) is a vulnerability in the Rust standard library. Updating to the latest rust nightly brings in the changes from Rust 1.58.1 which mitigate this issue. See also [Rust#93110](https://github.com/rust-lang/rust/pull/93110). Crucially, this may [require further attention](https://github.com/rust-lang/rust/issues/93129).

OVERLORD added the pull-request label 2025-10-09 18:20:29 +03:00

OVERLORD closed this issue 2025-10-09 18:20:31 +03:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

test_dylint

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels

better for forum

bug

bug

bug

documentation

duplicate

enhancement

future Vault

good first issue

help wanted

low priority

notes

pull-request

Mirrored from GitHub Pull Request

question

SSO

Third party

troubleshooting

troubleshooting

wontfix

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/vaultwarden#3284