Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2026/06/23 7:23 p.m.7 views

openCryptoki: openCryptoki: Information disclosure and Denial of Service via malformed BER-encoded cryptographic objects

A flaw was found in openCryptoki, a PKCS11 Cryptographic Token Interface Standard library. The BER/DER Basic Encoding Rules/Distinguished Encoding Rules decoding functions in the shared common library do not properly validate attacker-controlled length fields against actual buffer boundaries. Thi...

6.8CVSS6AI score0.0016EPSS
Exploits1References6
NVD
NVD
added 2025/01/15 1:15 a.m.12 views

CVE-2025-0343

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS0.00319EPSS
Exploits0References1
CVE
CVE
added 2025/01/15 12:48 a.m.84 views

CVE-2025-0343

CVE-2025-0343: Swift ASN.1 can crash when parsing certain BER/DER constructions due to a preconditionFailure in the ASN.1 library that mismanages constructed vs primitive object forms. The issue is a runtime crash (graceful) rather than memory safety, exposed as a potential denial-of-service vect...

7.5CVSS6.5AI score0.00319EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 4:32 p.m.7 views

GHSA-W8XV-RWGF-4FWH CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS6.3AI score0.00319EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/01/14 4:32 p.m.15 views

CVE-2025-0343: Swift ASN.1 can crash when parsing maliciously formed BER/DER

Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provided in either constructed or primitive forms, and will trigger a preconditionFailure if that constrain...

7.5CVSS6.9AI score0.00319EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder