Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-50980

Опубликовано: 18 дек. 2023
Источник: debian
EPSS Низкий

Описание

gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libcrypto++fixed8.9.0-2package
libcrypto++ignoredbookwormpackage
libcrypto++no-dsabullseyepackage
libcrypto++no-dsabusterpackage

Примечания

  • https://github.com/weidai11/cryptopp/issues/1248

  • https://github.com/weidai11/cryptopp/commit/641ae35258de397774744b8b17ef6632c3fa48b3

EPSS

Процентиль: 21%
0.00066
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-50980

CVSS3: 7.5
ubuntu
около 2 лет назад

gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.

nvd логотип

CVE-2023-50980

CVSS3: 7.5
nvd
около 2 лет назад

gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.

suse-cvrf логотип

SUSE-SU-2024:0030-1

suse-cvrf
около 2 лет назад

Security update for libcryptopp

suse-cvrf логотип

SUSE-SU-2023:4957-1

suse-cvrf
около 2 лет назад

Security update for libcryptopp

github логотип

GHSA-x2gw-hrqg-xq6x

CVSS3: 7.5
github
около 2 лет назад

gf2n.cpp in Crypto++ (aka cryptopp) through 8.9.0 allows attackers to cause a denial of service (application crash) via DER public-key data for an F(2^m) curve, if the degree of each term in the polynomial is not strictly decreasing.

EPSS

Процентиль: 21%
0.00066
Низкий