Control: tag -1 confirmed
On Sun, Jun 26, 2022 at 05:36:42PM -0400, Nicolas Mora wrote:
> [ Reason ]
> Fix possible buffer overflow when decrypting forged jwe with invalid iv or
> cypherkey
Please go ahead, mentioning the CVE number in the changelog.
Thanks,
--
Jonathan Wiltshire
Hi,
On Sun, Jun 26, 2022 at 05:36:42PM -0400, Nicolas Mora wrote:
> Package: release.debian.org
> Severity: normal
> Tags: bullseye
> User: release.debian@packages.debian.org
> Usertags: pu
>
> [ Reason ]
> Fix possible buffer overflow when decrypting forged jwe with invalid iv or
>
Package: release.debian.org
Severity: normal
Tags: bullseye
User: release.debian@packages.debian.org
Usertags: pu
[ Reason ]
Fix possible buffer overflow when decrypting forged jwe with invalid iv or
cypherkey
[ Impact ]
program might crash or execute arbitrary code
[ Checklist ]
[x]
3 matches
Mail list logo