301 matches found
CVE-2022-22173
A Missing Release of Memory after Effective Lifetime vulnerability in the Public Key Infrastructure daemon pkid of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause Denial of Service DoS. In a scenario where Public Key Infrastructure PKI is used in combination with...
CVE-2022-22173
A Missing Release of Memory after Effective Lifetime vulnerability in the Public Key Infrastructure daemon pkid of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause Denial of Service DoS. In a scenario where Public Key Infrastructure PKI is used in combination with...
Juniper Networks Junos OS 安全漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that originates from a memory leak in the public key infrastructure...
[SECURITY] Fedora 33 Update: rpki-client-7.5-1.fc33
The OpenBSD rpki-client is a free, easy-to-use implementation of the Resource Public Key Infrastructure RPKI for Relying Parties RP to facilitate validation of the Route Origin of a BGP announcement. The program queries the RPKI repository system, downloads and validates Route Origin Authorisatio...
Fedora: Security Advisory for rpki-client (FEDORA-2021-31012ee5a0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for rpki-client (FEDORA-2021-5b8d0d36bf)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for rpki-client (FEDORA-2021-6a91085462)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2021-43114
FORT Validator versions prior to 1.5.2 will crash if an RPKI CA publishes an X.509 EE certificate. This will lead to RTR clients such as BGP routers to lose access to the RPKI VRP data set, effectively disabling Route Origin Validation...
NLnet Labs Routinator 缓冲区错误漏洞
NLnet Labs Routinator is an RPKI Resource Public Key Infrastructure authenticator written in Rust from Stichting NLnet Stichting Nlnet Labs in the Netherlands. A security vulnerability exists in NLnet Labs Routinator, which stems from the mismanagement of system resources e.g., memory, disk space...
PT-2021-23746 · Unknown · Fort Validator
Name of the Vulnerable Software and Affected Versions: FORT Validator versions prior to 1.5.2 Description: The issue occurs when an RPKI CA publishes an X.509 EE certificate, causing FORT Validator to crash. This crash leads to RTR clients, such as BGP routers, losing access to the RPKI VRP data...
NLnet Labs Routinator 资源管理错误漏洞
NLnet Labs Routinator is an RPKI Resource Public Key Infrastructure validator written in the Rust language from Stichting NLnet Stichting Nlnet Labs in the Netherlands. A security vulnerability exists in NLnet Labs Routinator that stems from improper design or implementation during code developme...
[SECURITY] Fedora 35 Update: rpki-client-7.4-1.fc35
The OpenBSD rpki-client is a free, easy-to-use implementation of the Resource Public Key Infrastructure RPKI for Relying Parties RP to facilitate validation of the Route Origin of a BGP announcement. The program queries the RPKI repository system, downloads and validates Route Origin Authorisatio...
CVE-2021-31375
An Improper Input Validation vulnerability in routing process daemon RPD of Juniper Networks Junos OS devices configured with BGP origin validation using Resource Public Key Infrastructure RPKI, allows an attacker to send a specific BGP update which may cause RPKI policy-checks to be bypassed...
Juniper Networks Junos OS 安全漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that originates from an incorrect input validation...
ca-certificates bug fix and enhancement update
The ca-certificates package contains a set of Certificate Authority CA certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure PKI. Bug Fixes and Enhancements: Annual 2021 ca-certificates update 2.48 from nss 3.66 for Firefox 91 BZ1971200...
ALBA-2021:3573 ca-certificates bug fix and enhancement update
The ca-certificates package contains a set of Certificate Authority CA certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure PKI. Bug Fixes and Enhancements: Annual 2021 ca-certificates update 2.48 from nss 3.66 for Firefox 91 BZ1971200...
The vulnerability of the implementation of the Resource Public Key Infrastructure (RPKI) function in the Cisco IOS XR operating system allows a perpetrator to cause a failure in the Border Gateway Protocol (BGP) process.
The vulnerability of the Resource Public Key Infrastructure RPKI function in the Cisco IOS XR operating system is related to the insufficient use of the assert function. Exploiting this vulnerability could allow a malicious actor to cause failures in the Border Gateway Protocol BGP process...
Cisco IOS XR Software Border Gateway Protocol Resource Public Key Infrastructure DoS (cisco-sa-xrbgp-rpki-dos-gvmjqxbk)
According to its self-reported version, Cisco IOS XR is affected by a denial of service DoS vulnerability in the implementation of the Resource Public Key Infrastructure RPKI feature due to incorrect handling of a specific RPKI to Router RTR Protocol packet. An unauthenticated, remote attacker ca...
DEBIAN-CVE-2021-3761
Any CA issuer in the RPKI can trick OctoRPKI prior to 1.3.0 into emitting an invalid VRP "MaxLength" value, causing RTR sessions to terminate. An attacker can use this to disable RPKI Origin Validation in a victim network for example AS 13335 - Cloudflare prior to launching a BGP hijack which...
UBUNTU-CVE-2021-3761
Any CA issuer in the RPKI can trick OctoRPKI prior to 1.3.0 into emitting an invalid VRP "MaxLength" value, causing RTR sessions to terminate. An attacker can use this to disable RPKI Origin Validation in a victim network for example AS 13335 - Cloudflare prior to launching a BGP hijack which...