Описание
Integer Overflow in go-jose
go-jose before 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bit architectures. An integer overflow could lead to authentication bypass for CBC-HMAC encrypted ciphertexts on 32-bit architectures.
Пакеты
Наименование
github.com/square/go-jose
go
Затронутые версииВерсия исправления
< 1.0.5
1.0.5
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 9 лет назад
go-jose before 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bit architectures. An integer overflow could lead to authentication bypass for CBC-HMAC encrypted ciphertexts on 32-bit architectures.
CVSS3: 7.5
nvd
почти 9 лет назад
go-jose before 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bit architectures. An integer overflow could lead to authentication bypass for CBC-HMAC encrypted ciphertexts on 32-bit architectures.
CVSS3: 7.5
debian
почти 9 лет назад
go-jose before 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bi ...