Description

RustCrypto CMOV provides conditional move CPU intrinsics which are guaranteed on major platforms to execute in constant-time and not be rewritten as branches by the compiler. Prior to 0.4.4, the thumbv6m-none-eabi (Cortex M0, M0+ and M1) compiler emits non-constant time assembly when using cmovnz (portable version). This vulnerability is fixed in 0.4.4.

Related CPE's

a

rustcrypto

cmov

*

*

*

*

*

rust

Vulnerable

References

https://github.com/RustCrypto/utils/commit/55977257e7c82a309d5e8abfdd380a774f0f9778

Patch

https://github.com/RustCrypto/utils/security/advisories/GHSA-2gqc-6j2q-83qp

ExploitVendor Advisory

https://github.com/RustCrypto/utils/security/advisories/GHSA-2gqc-6j2q-83qp

ExploitVendor Advisory

Weaknesses

[email protected]

Primary
CWE-208

[email protected]

Primary
CWE-203

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-15T20:16:05.313Z

1 month ago

Last modified

2026-01-23T18:59:58.223Z

3 weeks ago