3 matches found
CVE-2019-10013
The asn1signature function in asn1.c in Cameron Hamilton-Rich axTLS through 2.1.5 has a Buffer Overflow that allows remote attackers to cause a denial of service memory and CPU consumption via a crafted certificate in the TLS certificate handshake message, because the result of getasn1length is n...
CVE-2019-10013
The asn1signature function in asn1.c in Cameron Hamilton-Rich axTLS through 2.1.5 has a Buffer Overflow that allows remote attackers to cause a denial of service memory and CPU consumption via a crafted certificate in the TLS certificate handshake message, because the result of getasn1length is n...
CVE-2019-10013
The CVE-2019-10013 entry concerns the axTLS library (Cameron Hamilton-Rich) up to version 2.1.5. The asn1_signature function in asn1.c contains a Buffer Overflow vulnerability triggered by a crafted TLS certificate in the handshake, because get_asn1_length() is not checked for a sensible minimum/...