CVE-2020-36177

Опубликовано: 06 янв. 2021

Источник: debian

EPSS Низкий

Описание

RsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds write for certain relationships between key size and digest size.

Пакет	Статус	Версия исправления	Релиз	Тип
wolfssl	fixed	4.6.0-1		package

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26567
https://github.com/wolfSSL/wolfssl/commit/fb2288c46dd4c864b78f00a47a364b96a09a5c0f
https://github.com/wolfSSL/wolfssl/pull/3426

EPSS

Процентиль: 79%

0.0131

Низкий

CVE-2020-36177

CVSS3: 9.8

ubuntu

около 5 лет назад

RsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds write for certain relationships between key size and digest size.

CVE-2020-36177

CVSS3: 9.8

nvd

около 5 лет назад

RsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds write for certain relationships between key size and digest size.

GHSA-68gc-rmhh-c4gg

github

больше 3 лет назад

RsaPad_PSS in wolfcrypt/src/rsa.c in wolfSSL before 4.6.0 has an out-of-bounds write for certain relationships between key size and digest size.

EPSS

Процентиль: 79%

0.0131

Низкий