P11-kit Project

P11-kit

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.11%
  • Veröffentlicht 29.06.2026 18:44:24
  • Zuletzt bearbeitet 08.07.2026 03:34:36

A flaw was found in p11-kit. The RPC message attribute parsing functions p11_rpc_message_get_attribute() and p11_rpc_message_get_attribute_array_value() form a mutually-recursive call chain with no recursion depth limit when processing nested CKA_WRA...

  • EPSS 1.16%
  • Veröffentlicht 26.03.2026 20:01:46
  • Zuletzt bearbeitet 07.07.2026 15:16:43

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attemp...

  • EPSS 3.35%
  • Veröffentlicht 16.12.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:23:54

An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or callo...

  • EPSS 2.26%
  • Veröffentlicht 16.12.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:23:54

An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a ...

  • EPSS 3.52%
  • Veröffentlicht 16.12.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:23:54

An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in ...