Rust is a multi-paradigm programming language focused on performance and safety, especially safe concurrency.

Rust

NixOS is a Linux distribution built on top of the Nix package manager. It is completely declarative, its system configurations are reproducible, makes configuration changes reliable and atomic, and eliminates configuration drift.

NixOS

Debian GNU/Linux is a Linux distribution composed of free and open-source software.

Linux Debian

Red Hat Enterprise Linux is a Linux distribution developed by Red Hat for the commercial market.

Linux Red Hat

Alpine Linux is a Linux distribution based on musl and BusyBox, designed for security, simplicity, and resource efficiency.

Linux Alpine

Echo is a secure, minimal Linux OS built vulnerability-free. It is fully compatible across environments and continuously patched - making it a clean, dependable base layer for modern applications. Echo is used by organizations focused on security and reliability, including those with compliance or FIPS requirements.

Echo

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
GHSA-8m29-fpq5-89jj	CRITICAL	9.3	Rust	zebra-script	No	Yes	Apr 18, 2026
GHSA-452v-w3gx-72wg	CRITICAL	9.2	Rust	zebra-chain	No	Yes	Apr 18, 2026
GHSA-29x4-r6jv-ff4w	MEDIUM	6.9	Rust	zebra-rpc	No	Yes	Apr 18, 2026
CVE-2026-40881	MEDIUM	6.3	Rust	zebra-network	No	Yes	Apr 18, 2026
CVE-2026-6654	MEDIUM	5.1	Rust	thin-vec	No	Yes	Apr 20, 2026

CVE-2026-35406:
Rust vulnerability analysis and mitigation

7.5

Related Rust vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2026-35406: Rust vulnerability analysis and mitigation