CVE-2021-41581: Out-of-bounds Read
(updated )
x509_constraints_parse_mailbox
in lib/libcrypto/x509/x509_constraints.c
in LibreSSL has a stack-based buffer over-read. When the input exceeds DOMAIN_PART_MAX_LEN
, the buffer lacks \0
termination.
References
Detect and mitigate CVE-2021-41581 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →