Download
| Alert*
oval:org.secpod.oval:def:1601596
A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment oval:org.secpod.oval:def:507240 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix: * libksba: integer overflow may lead to remote code execution For more details about the security issue, including the i ... oval:org.secpod.oval:def:19500144 A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment oval:org.secpod.oval:def:86515 libksba: X.509 and CMS support library Libksba could be made to crash or run programs if it decoded specially crafted data. oval:org.secpod.oval:def:1506094 [1.3.0-6] - Fix for CVE-2022-3515 oval:org.secpod.oval:def:507233 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix: * libksba: integer overflow may lead to remote code execution For more details about the security issue, including the i ... oval:org.secpod.oval:def:1506096 [1.3.5-8] - Fix for CVE-2022-3515 oval:org.secpod.oval:def:1506092 [1.5.1-5] - Fix for CVE-2022-3515 oval:org.secpod.oval:def:610213 An integer overflow flaw was discovered in the CRL parser in libksba, an X.509 and CMS support library, which could result in denial of service or the execution of arbitrary code. Details can be found in the upstream advisory at https://gnupg.org/blog/20221017-pepe-left-the-ksba.html oval:org.secpod.oval:def:2500828 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. oval:org.secpod.oval:def:707773 libksba: X.509 and CMS support library Libksba could be made to crash or run programs if it decoded specially crafted data. oval:org.secpod.oval:def:5800081 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix: * libksba: integer overflow may lead to remote code execution For more details about the security issue, including the i ... oval:org.secpod.oval:def:3300508 SUSE Security Update: Security update for libksba oval:org.secpod.oval:def:2600090 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. oval:org.secpod.oval:def:124337 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. oval:org.secpod.oval:def:205987 Security Fix: libksba: integer overflow may lead to remote code execution For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. oval:org.secpod.oval:def:124374 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. oval:org.secpod.oval:def:88416 An integer overflow flaw was discovered in the CRL parser in libksba, an X.509 and CMS support library, which could result in denial of service or the execution of arbitrary code. Details can be found in the upstream advisory at https://gnupg.org/blog/20221017-pepe-left-the-ksba.html oval:org.secpod.oval:def:89047761 This update for libksba fixes the following issues: - CVE-2022-3515: Fixed a possible overflow in the TLV parser . oval:org.secpod.oval:def:1701084 A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment oval:org.secpod.oval:def:89047681 This update for libksba fixes the following issues: - CVE-2022-3515: Fixed a possible overflow in the TLV parser . oval:org.secpod.oval:def:707784 libksba: X.509 and CMS support library Details: USN-5688-1 fixed vulnerabilities in Libksba. This update provides the corresponding update for Ubuntu 22.10. Original advisory Libksba could be made to crash or run programs if it decoded specially crafted data. oval:org.secpod.oval:def:4501137 KSBA is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix: * libksba: integer overflow may lead to remote code execution For more details about the security issue, including the i ... oval:org.secpod.oval:def:2107202 Oracle Solaris 11 - ( CVE-2022-3515 ) oval:org.secpod.oval:def:97774 [CLSA-2023:1701445092] libksba: Fix of 2 CVEs oval:org.secpod.oval:def:99618 The host is installed with GnuPG 2.3.0 before 2.4.0 or Gpg4win 2.0.0 before 4.1.0 and is prone to an integer overflow vulnerability. A flaws is present in the application, which fails to handle the Libksba library. Successful exploitation allows an attacker to cause remote code execution on the targ ... |