Radish alpha
h
heartwood
rad:z3gqcJUoA1n9HaHKufZs5FCSGazv5
Radicle Heartwood Protocol & Stack
Radicle
Git
Patches eff5d314
CVE-2026-25541
Merged fintohaps opened 2 months ago

Report: https://www.cve.org/CVERecord?id=CVE-2026-25541

This vulnerability was introduced via the bytes crate.

Update to 1.11.1, as recommended.

Activity Changes +3 -3
2 files changed +3 -3 2d0db3c6 31607cf7
modified Cargo.lock
@@ -369,9 +369,9 @@ checksum = "1fd0f2584146f6f2ef48085050886acf353beff7305ebd1ae69500e27c67f64b"


[[package]]

name = "bytes"
- 
version = "1.10.1"
+ 
version = "1.11.1"

source = "registry+https://github.com/rust-lang/crates.io-index"
- 
checksum = "d71b6127be86fdcfddb610f7182ac57211d4b18a3e9c82eb2d17662f2227ad6a"
+ 
checksum = "1e748733b7cbc798e1434b6ac524f0c1ff2ab456fe201501e6497c8417a4fc33"



[[package]]

name = "bytesize"
modified Cargo.toml
@@ -21,7 +21,7 @@ rust-version = "1.85.0"
[workspace.dependencies]

amplify = { version = "4.0.0", default-features = false }

bstr = "1.3"
- 
bytes = "1"
+ 
bytes = "1.11.1"

chrono = { version = "0.4.26", default-features = false }

colored = "2.1.0"

crossbeam-channel = "0.5.6"