rpm package
almalinux/p11-kit-server
pkg:rpm/almalinux/p11-kit-server
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-2100 | Med | 5.3 | < 0.26.2-1.el10 | 0.26.2-1.el10 | Mar 26, 2026 | A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialize | |
| CVE-2020-29361 | — | < 0.23.22-1.el8 | 0.23.22-1.el8 | Dec 16, 2020 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc. | ||
| CVE-2020-29362 | — | < 0.23.22-1.el8 | 0.23.22-1.el8 | Dec 16, 2020 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function ca | ||
| CVE-2020-29363 | — | < 0.23.22-1.el8 | 0.23.22-1.el8 | Dec 16, 2020 | An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving |
- affected < 0.26.2-1.el10fixed 0.26.2-1.el10
A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialize
- CVE-2020-29361Dec 16, 2020affected < 0.23.22-1.el8fixed 0.23.22-1.el8
An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.
- CVE-2020-29362Dec 16, 2020affected < 0.23.22-1.el8fixed 0.23.22-1.el8
An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function ca
- CVE-2020-29363Dec 16, 2020affected < 0.23.22-1.el8fixed 0.23.22-1.el8
An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving