2 matches found
SUSE CVE-2021-41581
x509constraintsparsemailbox in lib/libcrypto/x509/x509constraints.c in LibreSSL through 3.4.0 has a stack-based buffer over-read. When the input exceeds DOMAINPARTMAXLEN, the buffer lacks '\0' termination...
PT-2021-23347 · Openssl +1 · Libressl +1
Name of the Vulnerable Software and Affected Versions: LibreSSL versions through 3.4.0 Description: The issue is related to a stack-based buffer over-read in the x509 constraints parse mailbox function in lib/libcrypto/x509/x509 constraints.c. This occurs when the input exceeds DOMAIN PART MAX LE...