CVE-2016-3959 in Googleinformation

Résumé

par MITRE

The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

05/04/2016

Divulgation

23/05/2016

Modérer

accepté

Entrée

VDB-87599

CPE

prêt

EPSS

0.04335

KEV

non

Activités

très faible

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!