Lucene search
K

6 matches found

Snyk
Snyk
added 2026/06/09 6:33 p.m.8 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference during OCSP response checking. When a verification chain lacks a self-signed trusted anchor, the issuer of the last certificate is NULL, but the OCSP code accesses the next certificate as the issuer, dereferenci...

7.5CVSS5.3AI score0.00419EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/09 6:30 p.m.13 views

EUVD-2026-35482

Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...

7.5CVSS5.6AI score0.00419EPSS
Exploits0References4
NVD
NVD
added 2026/06/09 5:17 p.m.11 views

CVE-2026-42765

Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a self-signed trusted anchor, crashing the process. Impact summary: A NULL pointer dereference can...

7.5CVSS0.00419EPSS
Exploits0References3
CVE
CVE
added 2026/06/09 4:3 p.m.32 views

CVE-2026-42765

CVE-2026-42765 describes a NULL dereference in certificate verification when OCSP response checking is enabled together with partial-chain verification. The issue triggers a crash (Denial of Service) if the verified chain lacks a self-signed trusted anchor, because for the last certificate the is...

7.5CVSS5.6AI score0.00419EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/08/24 11:15 p.m.5 views

UBUNTU-CVE-2024-45238

An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP a resource certificate containing a bit string that doesn't properly decode into a Subject Public Key. OpenSSL does not report this problem during parsin...

7.5CVSS5.8AI score0.00305EPSS
Exploits0References4
Citrix
Citrix
added 2016/12/27 12:0 a.m.7 views

iOS DEP enrollment may fail when updating the trusted anchor certificates used to trust the SSL connection to the MDM server

After you enable iOS bulk enrollment, the upgrade of the trusted anchor certificates may cause the iOS DEP enrollment or re-enrollment failure. The issue may occur when you change from a self-signed certificate to a public certificate, purchase a certificate from a new provider, or move to an...

6.7AI score
Exploits0
Rows per page
Query Builder