4 matches found
CVE-2019-16748
In wolfSSL through 4.1.0, there is a missing sanity check of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a one-byte heap-based buffer over-read in CheckCertSignatureex in wolfcrypt/src/asn.c...
CVE-2019-16748
In wolfSSL through 4.1.0, there is a missing sanity check of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a one-byte heap-based buffer over-read in CheckCertSignatureex in wolfcrypt/src/asn.c...
UBUNTU-CVE-2019-16748
In wolfSSL through 4.1.0, there is a missing sanity check of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a one-byte heap-based buffer over-read in CheckCertSignatureex in wolfcrypt/src/asn.c...
CVE-2019-16748
CVE-2019-16748 affects wolfSSL (through 4.1.0) due to a missing sanity check of memory accesses during ASN.1 certificate parsing in the handshake. The issue is a one-byte heap-based buffer over-read in CheckCertSignature_ex (wolfcrypt/src/asn.c). This can lead to a severe impact as reflected by C...