rpm package
opensuse/libtomcrypt&distro=openSUSE Leap 15.0
pkg:rpm/opensuse/libtomcrypt&distro=openSUSE%20Leap%2015.0
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-17362 | Cri | 9.1 | < 1.17-lp150.2.3.1 | 1.17-lp150.2.3.1 | Oct 9, 2019 | In LibTomCrypt through 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences. This allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) or read information from |
- affected < 1.17-lp150.2.3.1fixed 1.17-lp150.2.3.1
In LibTomCrypt through 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences. This allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) or read information from