Lucene search
GoogleOSV:CVE-2019-16748HistorySep 24, 2019 - 1:15 p.m.
CVE-2019-16748
2019-09-2413:15:10
Google
osv.dev
2
In wolfSSL through 4.1.0, there is a missing sanity check of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a one-byte heap-based buffer over-read in CheckCertSignature_ex in wolfcrypt/src/asn.c.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wolfssl | eq | 3.8.0 | |
| wolfssl | eq | 3.6.9b | |
| wolfssl | eq | 4.1.0-stable | |
| wolfssl | eq | 2.0rc2 | |
| wolfssl | eq | 3.12.0-stable | |
| wolfssl | eq | 3.6.9d | |
| wolfssl | eq | 2.0.6 | |
| wolfssl | eq | 3.15.5-stable | |
| wolfssl | eq | 3.13.0-stable | |
| wolfssl | eq | 2.2.1 |
References
Related
debiancve
debiancve
CVE-2019-16748
2019-09-24 13:15:10
cvelist
cvelist
CVE-2019-16748
2019-09-24 12:12:38
ubuntucve
ubuntucve
CVE-2019-16748
2019-09-24 00:00:00
nvd
nvd
CVE-2019-16748
2019-09-24 13:15:10
cve
cve
CVE-2019-16748
2019-09-24 13:15:10
prion
prion
Heap overflow
2019-09-24 13:15:00
ics
ics
Rockwell Automation PanelView 800
2023-05-11 12:00:00