NotCVE - vendor:"Strongswan" product:"Strongswan" version:"5.6.1"

Page 3 of 11 results (0.006 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2018-6459

https://notcve.org/view.php?id=CVE-2018-6459

The rsa_pss_params_parse function in libstrongswan/credentials/keys/signature_params.c in strongSwan 5.6.1 allows remote attackers to cause a denial of service via a crafted RSASSA-PSS signature that lacks a mask generation function parameter. La función rsa_pss_params_parse en libstrongswan/credentials/keys/signature_params.c en strong permite que atacantes remotos provoquen una denegación de servicio (DoS) mediante una firma RSASSA-PSS manipulada que carece de un parámetro de función de generación de máscaras. • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00047.html https://security.gentoo.org/glsa/201811-16 https://www.strongswan.org/blog/2018/02/19/strongswan-vulnerability-%28cve-2018-6459%29.html • CWE-347: Improper Verification of Cryptographic Signature •

1 2 3