16 matches found
CVE-2026-55961 wolfSSL_PKCS7_verify() reports success for degenerate (certs-only) PKCS#7 with no signer
wolfSSLPKCS7verify returning success for a degenerate certs-only PKCS7 object that contains no signer. Such an object has empty signerInfos, so the underlying signed-data verification succeeds without authenticating any content. The compatibility-layer verify path now rejects the object when no...
EUVD-2026-39491
wolfSSLPKCS7verify returning success for a degenerate certs-only PKCS7 object that contains no signer. Such an object has empty signerInfos, so the underlying signed-data verification succeeds without authenticating any content. The compatibility-layer verify path now rejects the object when no...
CVE-2026-55961
wolfSSLPKCS7verify returning success for a degenerate certs-only PKCS7 object that contains no signer. Such an object has empty signerInfos, so the underlying signed-data verification succeeds without authenticating any content. The compatibility-layer verify path now rejects the object when no...
CVE-2026-55961
The CVE describes a flaw in wolfSSL where wolfSSL_PKCS7_verify() incorrectly reported success for a degenerate PKCS#7 object that contains no signer. In such objects, signerInfos is empty, so underlying signed-data verification could succeed without authenticating any content. The fix enforces th...
CVE-2026-55961
wolfSSLPKCS7verify returning success for a degenerate certs-only PKCS7 object that contains no signer. Such an object has empty signerInfos, so the underlying signed-data verification succeeds without authenticating any content. The compatibility-layer verify path now rejects the object when no...
EUVD-2021-1520
Malware in sbrugna...
UBUNTU-CVE-2018-25033
ADMesh through 0.98.4 has a heap-based buffer over-read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a...
ADMesh 缓冲区错误漏洞
ADMesh is a program for working with triangular solid meshes. A security vulnerability exists in ADMesh version 0.98.4 and earlier, which stems from a heap-based out-of-bounds read in stlupdateconnectsremove1 called from stlremovedegenerate in connect.c in libadmesh.a. The vulnerability is caused...
GHSA-2WC6-2RCJ-8V76 scalarmult() vulnerable to degenerate public keys
The scalarmult function included in previous versions of this crate accepted all-zero public keys, for which the resulting Diffie-Hellman shared secret will always be zero regardless of the private key used. This issue was fixed by checking for this class of keys and rejecting them if they are us...
GHSA-WRVC-72W7-XPMJ Incorrect Comparison in sodiumoxide
An issue was discovered in the sodiumoxide crate starting with 0.2.0 and prior to 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties...
Code injection
sodiumoxide 0.0.13 and older scalarmult vulnerable to degenerate public keys...
CVE-2017-1000168
sodiumoxide 0.0.13 and older scalarmult vulnerable to degenerate public keys...
CVE-2017-1000168
sodiumoxide 0.0.13 and older scalarmult vulnerable to degenerate public keys...
CVE-2017-1000168
sodiumoxide 0.0.13 and older scalarmult vulnerable to degenerate public keys...
CVE-2017-1000168
The CVE-2017-1000168 entry concerns sodiumoxide prior to a fixed release where the scalarmult() function refused all-zero public keys, preventing the derived Diffie-Hellman shared secret from always being zero. The root cause, as documented in multiple sources (e.g., rustsec and GHSA advisories),...
RUSTSEC-2017-0001 scalarmult() vulnerable to degenerate public keys
The scalarmult function included in previous versions of this crate accepted all-zero public keys, for which the resulting Diffie-Hellman shared secret will always be zero regardless of the private key used. This issue was fixed by checking for this class of keys and rejecting them if they are us...