Lucene search
K

4 matches found

NVD
NVD
added 2026/01/27 4:16 p.m.10 views

CVE-2025-66199

Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large buffer before decompression without checking against the configured certificate size limit. Impact summary: An attacker can cause per-connection memory allocations of up to approximately 22 MiB and...

5.9CVSS0.00403EPSS
Exploits1References5
OSV
OSV
added 2026/01/27 4:16 p.m.5 views

ALPINE-CVE-2025-66199

Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large buffer before decompression without checking against the configured certificate size limit. Impact summary: An attacker can cause per-connection memory allocations of up to approximately 22 MiB and...

5.9CVSS6AI score0.00403EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/01/27 4:1 p.m.30 views

CVE-2025-66199 TLS 1.3 CompressedCertificate excessive memory allocation

Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large buffer before decompression without checking against the configured certificate size limit. Impact summary: An attacker can cause per-connection memory allocations of up to approximately 22 MiB and...

0.00403EPSS
Exploits1References5
OSV
OSV
added 2023/08/26 11:5 a.m.6 views

OESA-2023-1533 golang security update

The Go Programming Language. Security Fixes: Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192 bits. Based on a survey of publicly trust...

5.3CVSS5.4AI score0.01328EPSS
Exploits0References2
Rows per page
Query Builder