Skip to content

Bump rustls-webpki from 0.103.12 to 0.103.13#113

Merged
rubenhensen merged 1 commit intomainfrom
dependabot/cargo/rustls-webpki-0.103.13
Apr 30, 2026
Merged

Bump rustls-webpki from 0.103.12 to 0.103.13#113
rubenhensen merged 1 commit intomainfrom
dependabot/cargo/rustls-webpki-0.103.13

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 24, 2026
edited
Loading

Bumps rustls-webpki from 0.103.12 to 0.103.13.

Release notes

Sourced from rustls-webpki's releases.

0.103.13

  • Fix reachable panic in parsing a CRL. This was reported to us as GHSA-82j2-j2ch-gfr8. Users who don't use CRLs are not affected.
  • For name constraints on URI names, we incorrectly processed excluded subtrees in a way which inverted the desired meaning. See rustls/webpki#471. This was a case missing in the fix for GHSA-965h-392x-2mh5.

What's Changed

Full Changelog: rustls/webpki@v/0.103.12...v/0.103.13

Commits
  • 2879b2c Prepare 0.103.13
  • 2c49773 Improve tests for padding of BitStringFlags
  • 4e3c0b3 Correct validation of BIT STRING constraints
  • 39c91d2 Actually fail closed for URI matching against excluded subtrees
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Apr 24, 2026
@dependabot
Bump rustls-webpki from 0.103.12 to 0.103.13
2f394ca 
Bumps [rustls-webpki](https://github.com/rustls/webpki) from 0.103.12 to 0.103.13.
- [Release notes](https://github.com/rustls/webpki/releases)
- [Commits](rustls/webpki@v/0.103.12...v/0.103.13)

---
updated-dependencies:
- dependency-name: rustls-webpki
  dependency-version: 0.103.13
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title build(deps): bump rustls-webpki from 0.103.12 to 0.103.13 Bump rustls-webpki from 0.103.12 to 0.103.13 Apr 30, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/rustls-webpki-0.103.13 branch from 7f46b3e to 2f394ca Compare April 30, 2026 19:28
@rubenhensen rubenhensen merged commit 97032e0 into main Apr 30, 2026
5 checks passed
@rubenhensen rubenhensen deleted the dependabot/cargo/rustls-webpki-0.103.13 branch April 30, 2026 19:37
@github-actions github-actions Bot mentioned this pull request Apr 30, 2026
Merged
@dobby-coder dobby-coder Bot mentioned this pull request May 1, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update Rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rubenhensen