1. RUSTSEC-2026-0099: rustls-webpki Flaw Allowed Wildcard Certificates to Bypass DNS Name Constraints
A critical validation flaw in `rustls-webpki`, the widely deployed Rust library for TLS certificate chain verification, permitted wildcard certificate names to bypass DNS name constraints that should have restricted them. The vulnerability, designated RUSTSEC-2026-0099, was identified in version 0.103.10 and patched ac...