CVE-2008-7129

Опубликовано: 31 авг. 2009

Источник: debian

EPSS Низкий

Описание

XySSL before 0.9 allows remote attackers to cause a denial of service (infinite loop) via an X.509 certificate that does not pass the RSA signature check during verification.

Пакеты

Пакет	Статус	Версия исправления	Тип
xyssl	fixed	0.9-1	package
polarssl	not-affected		package
pdkim	itp		package

Примечания

check pdkim if/when it enters unstable (contains polarssl code copy)

EPSS

Процентиль: 55%

0.00329

Низкий

Связанные уязвимости

CVE-2008-7129

ubuntu

больше 16 лет назад

XySSL before 0.9 allows remote attackers to cause a denial of service (infinite loop) via an X.509 certificate that does not pass the RSA signature check during verification.

CVE-2008-7129

nvd

больше 16 лет назад

XySSL before 0.9 allows remote attackers to cause a denial of service (infinite loop) via an X.509 certificate that does not pass the RSA signature check during verification.

GHSA-33mp-r2vv-f8h8

github

больше 3 лет назад

XySSL before 0.9 allows remote attackers to cause a denial of service (infinite loop) via an X.509 certificate that does not pass the RSA signature check during verification.

EPSS

Процентиль: 55%

0.00329

Низкий