Libksba Project - Libksba CVE

Filtered by vendor Libksba Project Subscribe

Filtered by product Libksba

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-9087	5 Canonical, Debian, Gnupg and 2 more	5 Ubuntu Linux, Debian Linux, Gnupg and 2 more	2020-07-14	7.5 HIGH	N/A
Integer underflow in the ksba_oid_to_str function in Libksba before 1.3.2, as used in GnuPG, allows remote attackers to cause a denial of service (crash) via a crafted OID in a (1) S/MIME message or (2) ECC based OpenPGP data, which triggers a buffer overflow.

Vulnerabilities (CVE)