Moderate severityNVD Advisory· Published Oct 28, 2022· Updated May 5, 2025
OctoRPKI crash when maximum iterations number is reached
CVE-2022-3616
Description
Attackers can create long chains of CAs that would lead to OctoRPKI exceeding its max iterations parameter. In consequence it would cause the program to crash, preventing it from finishing the validation and leading to a denial of service. Credits to Donika Mirdita and Haya Shulman - Fraunhofer SIT, ATHENE, who discovered and reported this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/cloudflare/cfrpkiGo | < 1.4.4 | 1.4.4 |
Affected products
2- Range: 0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.