References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

Change History

In the Linux kernel, the following vulnerability has been resolved:

crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

Use check_add_overflow() to guard against potential integer overflows
when adding the binary blob lengths and the size of an asymmetric_key_id
structure and return ERR_PTR(-EOVERFLOW) accordingly. This prevents a
possible buffer overflow when copying data from potentially malicious
X.509 certificate fields that can be arbitrarily large, such as ASN.1
INTEGER serial numbers, issuer names, etc.

https://git.kernel.org/stable/c/6af753ac5205115e6c310c8c4236c01b59a1c44f

https://git.kernel.org/stable/c/b7090a5c153105b9fd221a5a81459ee8cd5babd6

https://git.kernel.org/stable/c/c73be4f51eed98fa0c7c189db8f279e1c86bfbf7

https://git.kernel.org/stable/c/df0845cf447ae1556c3440b8b155de0926cbaa56