Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-pmw9-567p-68pc: OctoRPKI crashes when max iterations is reached

Impact

Attackers can create long chains of CAs that would lead to OctoRPKI exceeding its max iterations parameter that would cause the program to crash and not finish the validation and thus a denial of service.

Patches

This issue is fixed in v1.4.4

Workarounds

None.

ghsa
Open in Source
#dos#git

OctoRPKI crashes when max iterations is reached

Moderate severity GitHub Reviewed Published Oct 31, 2022 in cloudflare/cfrpki • Updated Oct 31, 2022

Related news

CVE-2022-3616: OctoRPKI crashes when max iterations is reached

Attackers can create long chains of CAs that would lead to OctoRPKI exceeding its max iterations parameter. In consequence it would cause the program to crash, preventing it from finishing the validation and leading to a denial of service.

ghsa: Latest News

GHSA-7p9f-6x8j-gxxp: CRI-O: Maliciously structured checkpoint file can gain arbitrary node access
ghsa