| عنوان | Out-of-bounds read in LibTomCrypt 1.18.2 and earlier versions |
|---|
| الوصف | The der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences.
This allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) or read information from other memory locations via carefully crafted DER-encoded data. |
|---|
| المصدر | ⚠️ https://github.com/libtom/libtomcrypt/issues/507 |
|---|
| المستخدم | werew (UID 5065) |
|---|
| ارسال | 08/10/2019 01:22 PM (7 سنوات منذ) |
|---|
| الاعتدال | 08/10/2019 03:41 PM (2 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 142995 [LibTomCrypt حتى 1.18.2 UTF-8 der_decode_utf8_string.c der_decode_utf8_string الكشف عن المعلومات] |
|---|
| النقاط | 18 |
|---|