← back
CVE-2016-4353

CVE-2016-4353

EPSS 2.1%
ber-decoder.c in Libksba before 1.3.3 does not properly handle decoder stack overflows, which allows remote attackers to cause a denial of service (abort) via crafted BER data.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git%3Ba=commit%3Bh=07116a314f4dcd4d96990bbd74db95a03a9f650ahttps://security.gentoo.org/glsa/201604-04http://www.openwall.com/lists/oss-security/2016/04/29/5http://www.openwall.com/lists/oss-security/2016/04/29/8http://www.ubuntu.com/usn/USN-2982-1