FIND-20260403-010 · 2026-04-03 · Innovation Veille

RustSec RUSTSEC-2026-0079 and RUSTSEC-2026-0080 — dyn-future and scaly Unsoundness Advisories

cve LOW
Two new RustSec advisories were assigned on April 2, 2026: RUSTSEC-2026-0079 for the dyn-future crate (memory unsoundness) and RUSTSEC-2026-0080 for the scaly crate (memory unsoundness). Additionally, RUSTSEC-2023-0125 was assigned to the aws-sigv4 crate (CVE-2023-30610, credential information disclosure). These are niche crates unlikely to be in ODS direct dependencies.

Source

https://github.com/rustsec/advisory-db/commits

ODS Impact

ODS Rust services should run cargo audit to verify none of these crates appear in Cargo.lock files. The dyn-future crate could appear as a transitive dependency in async Rust projects. The aws-sigv4 advisory is only relevant if ODS services interact with AWS signing directly (currently no ODS services do). Standard advisory — no immediate action unless cargo audit flags these.

Security Review

N/A

Tags

rust rustsec cve memory-safety advisory
Generated by ODS Innovation Veille · 2026-04-03T07:09:03+00:00