24 matches found
CVE-2019-13470
CVE-2019-13470 affects MatrixSSL prior to 4.2.1. It is an out-of-bounds read during ASN.1 handling, with network-based exploitation, no authentication, and high impact to confidentiality, integrity, and availability. Remediation: upgrade to MatrixSSL 4.2.1 or apply vendor patch as available.
CVE-2016-6883
CVE-2016-6883 affects MatrixSSL (pre-3.8.3) configured with RSA cipher suites, enabling Bleichenbacher-style information disclosure via TLS. The Connected IBM bulletin notes IBM Predictive Insights 8.5 and 9.0 as affected and frames the issue around an RSA padding vulnerability leading to potenti...
CVE-2022-43974
Summary: CVE-2022-43974 affects MatrixSSL versions 4.0.4–4.5.1, where an integer overflow in matrixSslDecodeTls13 could be triggered by a crafted TLS message, leading to remote code execution. Multiple security feeds confirm this issue and indicate a fixed version in 4.6.0. Impact (as stated): Re...
CVE-2019-16747
CVE-2019-16747 affects MatrixSSL before 4.2.2 Open. The DTLS server can encounter an invalid pointer free, causing memory corruption and a daemon crash via crafted network messages; this is a separate issue from CVE-2019-14431. Red Hat and related records confirm the vulnerability and point to 4....
CVE-2016-6884
CVE-2016-6884 affects MatrixSSL before 3.8.3. TLS cipher suites using CBC mode in TLS 1.1/1.2 can be exploited by remote attackers to cause a denial of service via an out-of-bounds read in a crafted message. Impact is a partial availability loss without confidentiality or integrity compromise. Af...
CVE-2017-2781
CVE-2017-2781 concerns InsideSecure MatrixSSL 3.8.7b. The vulnerability is a heap-based buffer overflow in the X509 certificate parsing code, specifically in the IssuerPolicy/PolicyMappings handling inside parsePolicyMappings. A specially crafted DER-encoded X.509 certificate (containing OID sequ...
CVE-2019-13629
CVE-2019-13629 affects MatrixSSL 4.2.1 and earlier. The vulnerability is a timing side channel in ECDSA signature generation: the implementation leaks the bit length of the scalar via scalar multiplication in crypto/pubkey/ecc_math.c. An attacker who can observe durations over hundreds to thousan...
CVE-2016-8671
The CVE-2016-8671 issue affects MatrixSSL 3.8.6 and earlier, where the modular exponentiation in pstm_exptmod is not performed correctly. This vulnerability could allow remote attackers to predict the secret key via certain vectors, stemming from an incomplete fix for CVE-2016-6887. Public source...
CVE-2017-1000417
MatrixSSL 3.7.2 is affected by a collision-prone OID comparison logic that can allow spoofing of OIDs (such as in the ExtKeyUsage extension) in X.509 certificates. The root cause is the OID comparison logic used by the library. The available connected documents confirm the vulnerability and affec...
CVE-2017-2780
CVE-2017-2780 is a heap-based buffer overflow in InsideSecure MatrixSSL 3.8.7b, triggered while parsing the X509 SubjectDomainPolicy extension in DER certificates. The vulnerability arises in parsePolicyMappings, where an OID length-derived allocation can overflow when more OIDs are copied than s...
CVE-2016-6885
Affected product: MatrixSSL. Vulnerable component: pstm_exptmod function. Root cause: improper handling of a base-zero value in modular exponentiation leads to denial of service (invalid free and crash). Affected versions: prior to 3.8.4. Impact: remote DoS; no exploitation details provided in th...
CVE-2017-2782
InsideSecure MatrixSSL 3.8.7b contains CVE-2017-2782: an integer overflow in the X509 general names parsing path (parseGeneralNames) can trigger a length underflow, allowing an out-of-bounds memcpy/read and potential memory disclosure or crash when processing a crafted certificate during TLS hand...
CVE-2022-46505
CVE-2022-46505 affects MatrixSSL up to version 4.5.1-open. The issue is a failure to securely validate the SessionID, enabling misuse of an all-zero MasterSecret that can decrypt secret data. Public references in the provided documents consistently tie the vulnerability to MatrixSSL’s SessionID h...
CVE-2016-6887
Summary: CVE-2016-6887 affects MatrixSSL 3.8.6 and earlier, where the pstm_exptmod function mishandles modular exponentiation, enabling potential key prediction via a CRT attack. The related OpenVAS entry indicates a vulnerability class for MatrixSSL
CVE-2016-6890
CVE-2016-6890 originates from a heap-based buffer overflow in MatrixSSL versions 3.8.5 and earlier, triggered by a crafted Subject Alternative Name in an X.509 certificate. This leads to remote code execution in vulnerable SSL stacks. The connected documents consistently identify the affected com...
CVE-2023-24609
Matrix SSL versions 4.x–4.6.0 and Rambus TLS Toolkit are affected by a length-subtraction integer overflow in the TLS 1.3 server ClientHello PSK extension parsing. The overflow can cause an attacked device to compute an SHA-2 hash over at least 65 KB in RAM, leading to heavy CPU load when many cr...
CVE-2016-6892
MatrixSSL 3.8.5 and earlier contains a denial-of-service issue (CVE-2016-6892) in the x509FreeExtensions function, where processing a crafted X.509 certificate can cause a free operation on unallocated memory. Affected component: MatrixSSL under versions
CVE-2017-1000415
CVE-2017-1000415 concerns MatrixSSL version 3.7.2, where the UTCTime date range validation in the X.509 certificate validation is incorrect. This defect can cause some certificates to have their validity period skewed, specifically extending the beginning/expiration year by 100 years. The connect...
CVE-2018-12439
MatrixSSL (GUARD TLS-TK) up to version 3.9.5 Open is vulnerable to a memory-cache side-channel attack on ECDSA signatures (ROHNP). The flaw affects MatrixSSL in vendor-provided builds and embedded/OpenSSL-like stacks, enabling an attacker with local access or co-residency on the same physical hos...
CVE-2019-10914
CVE-2019-10914 affects MatrixSSL 4.0.1 Open (used in Inside Secure TLS Toolkit). Root cause is a stack-based buffer overflow during X.509 certificate verification due to missing validation in psRsaDecryptPubExt (crypto/pubkey/rsa_pub.c). Public sources warn of potentially severe impact (high on C...
CVE-2016-6891
CVE-2016-6891 affects MatrixSSL before 3.8.6. A crafted ASN.1 Bit Field in an X.509 certificate can trigger an out-of-bounds read, leading to denial of service. The vulnerable line-of-code issue is the parsing of the Bit Field in X.509 certificates. A fix is available: upgrade MatrixSSL to versio...
CVE-2019-14431
MatrixSSL 3.8.3 Open through 4.2.1 Open is affected by CVE-2019-14431 due to a DTLS processing bug in parseSSLHandshake (sslDecode.c) that can mishandle the fragment length, causing a heap-based buffer overflow of up to 256 bytes and possible Remote Code Execution. The vulnerability is triggered ...
CVE-2016-6886
The CVE-2016-6886 issue affects MatrixSSL prior to 3.8.4, where the pstm_reverse function can be abused during RSA key exchange to trigger an invalid memory read and crash, enabling a remote denial-of-service. The vulnerability is triggered by a zero value or by the key’s modulus for the secret k...
CVE-2016-6882
CVE-2016-6882 concerns MatrixSSL prior to 3.8.7. When DHE_RSA cipher suites are enabled, remote attackers may exploit a Lenstra side-channel to glean RSA private key information. The vulnerability is limited to affected builds of MatrixSSL and is primarily an information-leak risk to private RSA ...