An issue exists in Samsung TizenRT up to and including 3.0_GBM (and 3.1_PRE). cyassl_connect_step2 in curl/vtls/cyassl.c has a missing X509_free after SSL_get_peer_certificate, leading to information disclosure.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
samsung tizenrt 3.0 |
||
samsung tizenrt 2.0 |
||
samsung tizenrt 1.1 |
||
samsung tizenrt 1.0 |