Lucene search
K

5 matches found

OSV
OSV
added 2023/03/24 10:1 p.m.6 views

GHSA-3GXF-9R58-2GHG `openssl` `X509NameBuilder::build` returned object is not thread safe

OpenSSL has a modified bit that it can set on on X509NAME objects. If this bit is set then the object is not thread-safe even when it appears the code is not modifying the value. Thanks to David Benjamin Google for reporting this issue...

7.2AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2023/03/24 10:1 p.m.17 views

`openssl` `X509NameBuilder::build` returned object is not thread safe

OpenSSL has a modified bit that it can set on on X509NAME objects. If this bit is set then the object is not thread-safe even when it appears the code is not modifying the value. Thanks to David Benjamin Google for reporting this issue...

6.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2023/03/24 12:0 p.m.20 views

RUSTSEC-2023-0022 `openssl` `X509NameBuilder::build` returned object is not thread safe

OpenSSL has a modified bit that it can set on on X509NAME objects. If this bit is set then the object is not thread-safe even when it appears the code is not modifying the value. Thanks to David Benjamin Google for reporting this issue...

7.2AI score
Exploits0References3
RustSec
RustSec
added 2023/03/24 12:0 p.m.22 views

`openssl` `X509NameBuilder::build` returned object is not thread safe

OpenSSL has a modified bit that it can set on on X509NAME objects. If this bit is set then the object is not thread-safe even when it appears the code is not modifying the value. Thanks to David Benjamin Google for reporting this issue...

6.8AI score
Exploits0Affected Software1
seebug.org
seebug.org
added 2006/11/29 12:0 a.m.66 views

ProFTPD mod_tls预认证远程缓冲区溢出漏洞

ProFTPD是一款开放源代码FTP服务程序。 ProFTPD的模块modtls在处理用户认证时存在缓冲溢出漏洞,远程攻击者可能利用此漏洞完全控制服务器。 ProFTPD的modtls模块的tlsx509nameoneline函数中存在远程溢出漏洞,允许远程未经认证的攻击者获得root用户权限。漏洞相关的代码如下: contrib/modtls.c: """ static char tlsx509nameonelineX509NAME x509name static char buf256 = '\0'; / If we are using OpenSSL 0.9.6 or newer,...

7AI score
Exploits0
Rows per page
Query Builder