1. rustls-webpki Wildcard Certificate Validation Flaw Bypasses Name Constraints in Security Patch Gap
A validation vulnerability in `rustls-webpki` versions prior to 0.103.12 and certain 0.104.0-alpha releases allows wildcard DNS certificates to escape permitted subtree name constraints, potentially enabling certificate misissuance beyond intended restrictions. The flaw, tracked as GHSA-xgp8-3hg3-c2mh, stems from the l...