P11 Kitproject P11 Kit
By the Year
In 2024 there have been 0 vulnerabilities in P11 Kitproject P11 Kit . P11 Kit did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 3 | 6.77 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new P11 Kit vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent P11 Kitproject P11 Kit Security Vulnerabilities
An issue was discovered in p11-kit 0.21.1 through 0.23.21
CVE-2020-29361
7.5 - High
- December 16, 2020
An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.
Integer Overflow or Wraparound
An issue was discovered in p11-kit 0.21.1 through 0.23.21
CVE-2020-29362
5.3 - Medium
- December 16, 2020
An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation.
Out-of-bounds Read
An issue was discovered in p11-kit 0.23.6 through 0.23.21
CVE-2020-29363
7.5 - High
- December 16, 2020
An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving entity may not allocate sufficient length for the buffer to store the deserialized value.
Memory Corruption
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Oracle Communications Cloud Native Core Policy or by P11 Kitproject? Click the Watch button to subscribe.
