|
|
Subscribe / Log in / New account

libksba: three vulnerabilities

Package(s):libksba CVE #(s):
Created:April 27, 2016 Updated:April 27, 2016
Description: From the Gentoo advisory:

libksba is vulnerable to two integer overflows and a Denial of Service vulnerability.

  1. Denial of Service due to stack overflow in src/ber-decoder.c
    http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=c...

  2. Integer overflow in the BER decoder src/ber-decoder.c
    http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=c...

  3. Integer overflow in the DN decoder src/dn.c
    http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=c...
Alerts:
Gentoo 201604-04 libksba 2016-04-26
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds