Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:14 a.m.8 views

CVE-2023-25656

notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is...

7.5CVSS6.6AI score0.0044EPSS
Exploits0References1
Circl
Circl
added 2023/02/20 6:15 p.m.19 views

CVE-2023-25656

creationtimestamp| type| source ---|---|--- 2023-02-20 18:15:54+00:00| seen| https://t.me/cibsecurity/58523...

7.5CVSS7.3AI score0.0044EPSS
Exploits0References1
Wolfi
Wolfi
added 2023/02/20 4:15 p.m.21 views

CVE-2023-25656 vulnerabilities

Vulnerabilities for packages: zot...

7.5CVSS7.1AI score0.0044EPSS
Exploits0
Cvelist
Cvelist
added 2023/02/20 12:0 a.m.38 views

CVE-2023-25656 notation-go has excessive memory allocation on verification

notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is...

7.5CVSS7.7AI score0.0044EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/02/20 12:0 a.m.9 views

CVE-2023-25656

notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is...

7.5CVSS7.4AI score0.0044EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/02/20 12:0 a.m.11 views

CVE-2023-25656 notation-go has excessive memory allocation on verification

notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is...

7.5CVSS7AI score0.0044EPSS
Exploits0References2
CVE
CVE
added 2023/02/20 12:0 a.m.400 views

CVE-2023-25656

The CVE affects notation-go (notaryproject) prior to 1.0.0-rc.3, where signature verification may cause memory exhaustion leading to process death and availability impact. Root cause is excessive memory use during verification; a patch is available in v1.0.0-rc.3. Remediation: upgrade to v1.0.0-r...

7.5CVSS7.4AI score0.0044EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/02/20 12:0 a.m.8 views

CVE-2023-25656 notation-go has excessive memory allocation on verification

notation-go is a collection of libraries for supporting Notation sign, verify, push, and pull of oci artifacts. Prior to version 1.0.0-rc.3, notation-go users will find their application using excessive memory when verifying signatures. The application will be killed, and thus availability is...

7.5CVSS7.4AI score0.0044EPSS
Exploits0References4
Rows per page
Query Builder