3 matches found
crypto/x509: golang: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries
A flaw was found in the crypto/x509 package of golang. This vulnerability allows a remote attacker to cause a Denial of Service DoS by presenting a specially crafted X.509 certificate with a large number of DNS Subject Alternative Name SAN entries. The certificate verification process, specifical...
PT-2026-45873
Name of the Vulnerable Software and Affected Versions Go versions prior to 1.25-1.25.11-1.1 Go versions prior to 1.26-1.26.4-1.1 Description Inefficient candidate hostname parsing occurs in the crypto/x509 package. The x509.Certificate.VerifyHostname function previously called matchHostnames in a...
Security update for gnutls
This update for gnutls fixes the following issues: CVE-2025-6395: Fix NULL pointer dereference when 2nd Client Hello omits PSK bsc1246299 CVE-2025-32988: Fix double-free due to incorrect ownership handling in the export logic of SAN entries containing an otherName bsc1246232 CVE-2025-32989: Fix...