From ea74a116f646ffdb6217dfb54cdd5970a08ab8b7 Mon Sep 17 00:00:00 2001
From: David Mulder <dmulder@samba.org>
Date: Mon, 2 Dec 2024 08:38:45 -0700
Subject: [PATCH] Fix CVE-2024-11738: rustls network-reachable panic in
 `Acceptor::accept`

Signed-off-by: David Mulder <dmulder@samba.org>
---
 Cargo.toml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Cargo.toml b/Cargo.toml
index b802ec7..c34cbf3 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -55,6 +55,7 @@ jsonwebtoken = "^9.2.0"
 zeroize = "^1.7.0"
 idmap = { path = "src/idmap" }
 identity_dbus_broker = "0.1.3"
+rustls = ">=0.23.19" # CVE-2024-11738
 
 # Kanidm deps
 argon2 = { version = "0.5.2", features = ["alloc"] }