diff --git a/crates/libafl_bolts/RUSTSEC-0000-0000.md b/crates/libafl_bolts/RUSTSEC-0000-0000.md
new file mode 100644
index 000000000..368436f2d
--- /dev/null
+++ b/crates/libafl_bolts/RUSTSEC-0000-0000.md
@@ -0,0 +1,24 @@
+```toml
+[advisory]
+id = "RUSTSEC-0000-0000"
+package = "libafl_bolts"
+date = "2025-10-21"
+url = "https://github.com/AFLplusplus/LibAFL/issues/3417"
+references = ["https://github.com/AFLplusplus/LibAFL/pull/3435"]
+informational = "unsound"
+categories = ["memory-corruption"]
+keywords = ["buffer-overflow", "soundness"]
+
+[affected.functions]
+"libafl_bolts::simd::covmap_is_interesting_simd" = ["<= 0.15.3"]
+"libafl_bolts::simd::covmap_is_interesting_naive" = ["<= 0.15.3"]
+
+[versions]
+patched = []
+```
+
+# Out-of-bounds access in covmap_is_interesting functions
+
+The safe functions `covmap_is_interesting_simd` and `covmap_is_interesting_naive` can cause undefined behavior through out-of-bounds memory access.
+
+Both functions use `get_unchecked` to access the `hist` slice with indices based on the `map` slice length. When `hist.len() < map.len()`, this results in out-of-bounds access causing undefined behavior.