218 matches found
Out-of-bounds
MatrixSSL before 4.2.1 has an out-of-bounds read during ASN.1 handling...
CVE-2019-13470
MatrixSSL before 4.2.1 has an out-of-bounds read during ASN.1 handling...
CVE-2019-13470
CVE-2019-13470 affects MatrixSSL prior to 4.2.1. It is an out-of-bounds read during ASN.1 handling, with network-based exploitation, no authentication, and high impact to confidentiality, integrity, and availability. Remediation: upgrade to MatrixSSL 4.2.1 or apply vendor patch as available.
CVE-2019-13470
MatrixSSL before 4.2.1 has an out-of-bounds read during ASN.1 handling...
MatrixSSL 4.0.1 RCE Vulnerability
MatrixSSL is prone to a remote code execution RCE vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2019-10914
pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsapub.c...
Stack overflow
pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsapub.c...
CVE-2019-10914
pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsapub.c...
CVE-2019-10914
pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsapub.c...
CVE-2019-10914
pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsapub.c...
CVE-2019-10914
CVE-2019-10914 affects MatrixSSL 4.0.1 Open (used in Inside Secure TLS Toolkit). Root cause is a stack-based buffer overflow during X.509 certificate verification due to missing validation in psRsaDecryptPubExt (crypto/pubkey/rsa_pub.c). Public sources warn of potentially severe impact (high on C...
MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates Vulnerability
MatrixSSL 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates I happened to notice that a public X.509 certificate testcase for CVE-2014-1569 caused a stack buffer overflow in MatrixSSL. I cleaned up the testcase a bit, to make a better demonstration. You can test it with the certValidate...
MatrixSSL 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates
MatrixSSL 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates I happened to notice that a public X.509 certificate testcase for CVE-2014-1569 caused a stack buffer overflow in MatrixSSL. I cleaned up the testcase a bit, to make a better demonstration. You can test it with the certValidate...
MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates
I happened to notice that a public X.509 certificate testcase for CVE-2014-1569 caused a stack buffer overflow in MatrixSSL. I cleaned up the testcase a bit, to make a better demonstration. You can test it with the certValidate tool that comes with MatrixSSL. $ gdb -q --args...
MatrixSSL (GUARD TLS-TK) <= 3.9.5 Side-Channel Attack Vulnerability
GUARD TLS-TK formerly MatrixSSL is vulnerable to a Memory-Cache Side-Channel attack. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
CVE-2018-12439
MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...
Memory corruption
MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...
CVE-2018-12439
MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...
CVE-2018-12439
MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...
CVE-2018-12439
MatrixSSL (GUARD TLS-TK) up to version 3.9.5 Open is vulnerable to a memory-cache side-channel attack on ECDSA signatures (ROHNP). The flaw affects MatrixSSL in vendor-provided builds and embedded/OpenSSL-like stacks, enabling an attacker with local access or co-residency on the same physical hos...