Libksba@1.3.2 Security Vulnerabilities and Issues — Libksba@1.3.2 CVE List

Lucene search

GnupgLibksba1.3.2

4 matches found

CVE•added 2016/06/13 7:59 p.m.•64 views

CVE-2016-4356

The append_utf8_value function in the DN decoder (dn.c) in Libksba before 1.3.3 allows remote attackers to cause a denial of service (out-of-bounds read) by clearing the high bit of the byte after invalid utf-8 encoded data.

7.5CVSS7.1AI score0.0109EPSS

CVE•added 2016/06/13 7:59 p.m.•55 views

CVE-2016-4353

ber-decoder.c in Libksba before 1.3.3 does not properly handle decoder stack overflows, which allows remote attackers to cause a denial of service (abort) via crafted BER data.

7.5CVSS7.2AI score0.00796EPSS

CVE•added 2016/06/13 7:59 p.m.•55 views

CVE-2016-4355

Multiple integer overflows in ber-decoder.c in Libksba before 1.3.3 allow remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

7.5CVSS7.3AI score0.00791EPSS

CVE•added 2016/06/13 7:59 p.m.•47 views

CVE-2016-4354

ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.

7.5CVSS7.3AI score0.00791EPSS