Integer overflow in the PointGFp constructor in Botan prior to 1.10.11 and 1.11.x prior to 1.11.27 allows remote malicious users to overwrite memory and possibly execute arbitrary code via a crafted ECC point, which triggers a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
botan project botan 1.11.21 |
||
botan project botan 1.11.20 |
||
botan project botan 1.11.13 |
||
botan project botan 1.11.12 |
||
botan project botan 1.11.4 |
||
botan project botan 1.11.3 |
||
botan project botan 1.11.23 |
||
botan project botan 1.11.22 |
||
botan project botan 1.11.15 |
||
botan project botan 1.11.14 |
||
botan project botan 1.11.7 |
||
botan project botan 1.11.6 |
||
botan project botan 1.11.5 |
||
botan project botan 1.11.26 |
||
botan project botan 1.11.19 |
||
botan project botan 1.11.18 |
||
botan project botan 1.11.11 |
||
botan project botan 1.11.10 |
||
botan project botan 1.11.2 |
||
botan project botan 1.11.1 |
||
botan project botan 1.11.25 |
||
botan project botan 1.11.24 |
||
botan project botan 1.11.17 |
||
botan project botan 1.11.16 |
||
botan project botan 1.11.9 |
||
botan project botan 1.11.8 |
||
botan project botan 1.11.0 |
||
botan project botan |
||
debian debian linux 8.0 |