CVE-2016-4354

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service crash via crafted BER data, which leads to a buffer overflow...

CVE-2016-4354

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service crash via crafted BER data, which leads to a buffer overflow...

CVE-2016-4354

CVE-2016-4354 affects Libksba prior to 1.3.3. The ber-decoder.c component uses an incorrect integer data type, allowing remote attackers to crash the process and cause a buffer overflow via crafted BER data. The issue is documented across multiple sources (OSV/OSVDEV, NVD references). Affected ve...

Ubuntu 14.04 LTS / 16.04 LTS : Libksba vulnerabilities (USN-2982-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2982-1 advisory. Hanno Bck discovered that Libksba incorrectly handled decoding certain BER data. An attacker could use this issue to cause Libksba to crash,...