8 matches found
Bulwark Webmail 信任管理问题漏洞
Bulwark Webmail is an open-source, self-hosted webmail client developed by Bulwark Mail. Versions of Bulwark Webmail prior to 1.4.11 had a trust management vulnerability. This vulnerability stemmed from the lack of checking the certificate trust chain during S/MIME signature verification, which...
Linux Distros Unpatched Vulnerability : CVE-2020-12421
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. Thi...
Important: edk2
Issue Overview: A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERALNAMEcmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to...
openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is t...
openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is t...
openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is t...
openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is t...
openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is t...