4 matches found
K000159898: OpenSSL vulnerability CVE-2025-11187
Security Advisory Description Issue summary: PBMAC1 parameters in PKCS12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer or NULL pointer dereference during MAC verification. Impact summary: The stack buffer overflow or NULL pointer dereference may cau...
CVE-2025-11187
OpenSSL CVE-2025-11187 affects OpenSSL 3.6, 3.5 and 3.4 where PBMAC1 parameters in PKCS#12 MAC verification are not validated. The PBKDF2 salt and keylength are used without validation; if keylength exceeds the 64-byte derived key buffer, an attacker-controlled buffer overflow can occur, potentia...
CVE-2025-11187
Issue summary: PBMAC1 parameters in PKCS12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer or NULL pointer dereference during MAC verification. Impact summary: The stack buffer overflow or NULL pointer dereference may cause a crash leading to Denial o...
CVE-2025-11187 Improper validation of PBMAC1 parameters in PKCS#12 MAC verification
Issue summary: PBMAC1 parameters in PKCS12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer or NULL pointer dereference during MAC verification. Impact summary: The stack buffer overflow or NULL pointer dereference may cause a crash leading to Denial o...