Libressl@* Security Vulnerabilities and Issues — Libressl@* CVE List

Lucene search

OpenbsdLibressl*

3 matches found

CVE•added 2021/07/01 3:15 a.m.•61 views

CVE-2019-25048

LibreSSL 2.9.1 through 3.2.1 has a heap-based buffer over-read in do_print_ex (called from asn1_item_print_ctx and ASN1_item_print).

7.1CVSS6.9AI score0.00221EPSS

CVE•added 2021/07/01 3:15 a.m.•60 views

CVE-2019-25049

LibreSSL 2.9.1 through 3.2.1 has an out-of-bounds read in asn1_item_print_ctx (called from asn1_template_print_ctx).

7.1CVSS6.8AI score0.00221EPSS

CVE•added 2021/09/24 3:15 a.m.•38 views

CVE-2021-41581

x509_constraints_parse_mailbox in lib/libcrypto/x509/x509_constraints.c in LibreSSL through 3.4.0 has a stack-based buffer over-read. When the input exceeds DOMAIN_PART_MAX_LEN, the buffer lacks '\0' termination.

5.5CVSS5.5AI score0.00304EPSS