libyubihsm.so is vulnerable to denial of service (DoS). The vulnerability exists due to a boundary error in the yh_com_sign_ssh_certificate
function, allowing an attacker to cause an application crash by passing specially crafted input using certify
command or the -a sign-ssh-certificate
.
CPE | Name | Operator | Version |
---|---|---|---|
libyubihsm.so | eq | 2.2.0 | |
libyubihsm.so | eq | 2.2.0 |