CVE-2022-27240

Опубликовано: 18 мар. 2022

Источник: debian

Описание

scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion.

Пакет	Статус	Версия исправления	Релиз	Тип
glewlwyd	fixed	2.6.1-2		package
glewlwyd	fixed	2.5.2-2+deb11u3	bullseye	package
glewlwyd	not-affected		buster	package

https://github.com/babelouest/glewlwyd/commit/4c5597c155bfbaf6491cf6b83479d241ae66940a (v2.6.2)
Introduced by: https://github.com/babelouest/glewlwyd/commit/e5007f6e102f1260a9562654c4e88f1c6de12c02 (v2.0.0-b1)

CVE-2022-27240

CVSS3: 9.8

ubuntu

почти 4 года назад

scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion.

CVE-2022-27240

CVSS3: 9.8

nvd

почти 4 года назад

scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer overflow associated with a webauthn assertion.