rpm package
almalinux/p11-kit-devel
pkg:rpm/almalinux/p11-kit-devel
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-2100 | Med | 5.3 | < 0.26.2-1.el10 | 0.26.2-1.el10 | Mar 26, 2026 | A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialize | |
| CVE-2020-29363 | Hig | 7.5 | < 0.23.22-1.el8 | 0.23.22-1.el8 | Dec 16, 2020 | An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving | |
| CVE-2020-29362 | Med | 5.3 | < 0.23.22-1.el8 | 0.23.22-1.el8 | Dec 16, 2020 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function ca | |
| CVE-2020-29361 | Hig | 7.5 | < 0.23.22-1.el8 | 0.23.22-1.el8 | Dec 16, 2020 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc. |
- affected < 0.26.2-1.el10fixed 0.26.2-1.el10
A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialize
- affected < 0.23.22-1.el8fixed 0.23.22-1.el8
An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving
- affected < 0.23.22-1.el8fixed 0.23.22-1.el8
An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function ca
- affected < 0.23.22-1.el8fixed 0.23.22-1.el8
An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.