VYPR

crypto/tls

by GO

CVEs (2)

  • CVE-2024-24783MedMar 5, 2024
    risk 0.31cvss 5.9epss 0.01

    Verifying a certificate chain which contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. This affects all crypto/tls clients, and servers that set Config.ClientAuth to VerifyClientCertIfGiven or RequireAndVerifyClientCert. The…

  • CVE-2022-41724Feb 28, 2023
    risk 0.00cvss epss 0.01

    Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which…

VYPR — Vulnerability Intelligence