An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE the receiving entity may not allocate sufficient length for the buffer to store the deserialized value.

🗓️ 24 Dec 2020 00:00:00Reported by MicrosoftType

mscve

mscve🔗 msrc.microsoft.com👁 2 Views

There is a heap overflow in p11-kit RPC CK_ATTRIBUTE deserialization in versions 0.23.6–0.23.21.

Reporter	Title	Published	Views	Family All 86
IBM Security Bulletins	Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to several CVEs	19 Oct 202115:38	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities	3 Dec 202118:52	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in go.etcd.io/etcd package affects IBM Watson Machine Learning Accelerator on Cloud Pak for Data	6 Dec 202316:17	–	ibm
Tenable Nessus	Amazon Linux 2 : p11-kit (ALAS-2021-1601)	12 Mar 202100:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0088: p11-kit (ALINUX3-SA-2022:0088)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : p11-kit (ALSA-2021:1609)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : p11-kit (CESA-2021:1609)	19 May 202100:00	–	nessus
Tenable Nessus	Debian DSA-4822-1 : p11-kit - security update	4 Jan 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : p11-kit (EulerOS-SA-2021-1015)	4 Jan 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : p11-kit (EulerOS-SA-2021-1034)	4 Jan 202100:00	–	nessus

Vulners

Node

microsoft cm1_p11-kit_0.23.22-1Range<0.23.22-1

24 Dec 2020 00:00Current

8.7High risk

Vulners AI Score8.7

CVSS 25

CVSS 3.17.5

EPSS0.00355

p11-kit heap overflow deserialization ck_attribute remote procedure call versions 0.23.6 0.23.21