Описание
scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| glewlwyd | fixed | 2.5.2-3 | package | |
| glewlwyd | fixed | 2.5.2-2+deb11u1 | bullseye | package |
| glewlwyd | not-affected | buster | package |
Примечания
https://github.com/babelouest/glewlwyd/commit/0efd112bb62f566877750ad62ee828bff579b4e2
EPSS
Процентиль: 63%
0.00455
Низкий
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 4 лет назад
scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
CVSS3: 9.8
nvd
больше 4 лет назад
scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
github
больше 3 лет назад
scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.
EPSS
Процентиль: 63%
0.00455
Низкий