Denial of Service Vulnerability in Rosenpass Crate from Rust
CVE-2023-53157

Currently unrated

Key Information:

Vendor: Rust
Status: rosenpass
Vendor: CVE Published:; 28 July 2025

What is CVE-2023-53157?

The rosenpass crate prior to version 0.2.1 has a vulnerability that allows remote attackers to trigger a denial of service by sending a specially crafted one-byte UDP packet. This can lead to unexpected application crashes, affecting service availability. It is essential for users of the rosenpass crate to update to the latest version to mitigate this risk.

References

https://crates.io/crates/rosenpass

https://github.com/advisories/GHSA-6ggr-cwv4-g7qg

https://github.com/rosenpass/rosenpass/commit/93439858d1c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 28, 2025