Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libtomcrypt vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2019-17362
In LibTomCrypt up to and including 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences. This allows context-dependent malicious users to cause a denial of service (out-of-bounds read and crash) or read...
Libtom Libtomcrypt
Debian Debian Linux 8.0
169
VMScore
CVE-2018-12437
LibTomCrypt up to and including 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same p...
Libtom Libtomcrypt
Linaro Op-tee
445
VMScore
CVE-2017-1000412
Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.
Linaro Op-tee
383
VMScore
CVE-2016-10335
In all Android releases from CAF using the Linux kernel, libtomcrypt was updated.
Google Android
668
VMScore
CVE-2005-1600
A "mathematical flaw" in the implementation of the El Gamal signature algorithm for LibTomCrypt 1.0 to 1.0.2 allows malicious users to generate valid signatures without having the private key.
Libtomcrypt Libtomcrypt 1.0
Libtomcrypt Libtomcrypt 1.0.1
Libtomcrypt Libtomcrypt 1.0.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started