|
Libksba Signature Verification Denial of Service Vulnerability
The libksba library is prone to a denial-of-service vulnerability because it crashes when verifying a signature with a malformed X.509 certificate. Attackers can exploit this issue to crash the KSBA library, and in turn cause various programs that depend on the library to cease functioning, effectively denying service. The following versions are affected: - SUSE Linux's version 0.9.12 - Ubuntu libksba8 version 0.9.9-2ubuntu0.5.04. Other individual implementations may also be vulnerable. |
|
|
Privacy Statement |
