phpseclib/phpseclib Security Advisories for 3.0.0 (6)
-
[HIGH] Name confusion in x509 Subject Alternative Name fields
PKSA-4p7m-np8m-fq35 CVE-2023-52892 GHSA-ff7q-6vwh-v9m4
Affected version: >=3.0.0,<3.0.33|>=2.0.0,<2.0.46|<1.0.22
Reported by:
GitHub -
[HIGH] phpseclib a large prime can cause a denial of service
PKSA-t5xz-td8w-f35v CVE-2024-27354 GHSA-hg35-mp25-qf6h
Affected version: >=3.0.0,<3.0.36|>=2.0.0,<2.0.47|>=1.0.0,<1.0.23
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] phpseclib does not properly limit the ASN1 OID length
PKSA-jsh4-f6tg-bwyq CVE-2024-27355 GHSA-jr22-8qgm-4q87
Affected version: >=3.0.0,<3.0.36|>=2.0.0,<2.0.47|>=1.0.0,<1.0.23
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] phpseclib vulnerable to denial of service
PKSA-vpz8-6fv7-t3fd CVE-2023-49316 GHSA-jpr7-q523-hx25
Affected version: >=3.0.0,<3.0.34
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Infinite Loop vulnerability
PKSA-qrgb-4pgm-cz41 CVE-2023-27560 GHSA-hm7p-r324-hhf3
Affected version: >=3.0.0,<3.0.19
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Improper Certificate Validation in phpseclib
PKSA-mnsd-qtjt-pgcq CVE-2021-30130 GHSA-vf4w-fg7r-5v94
Affected version: <2.0.31|>=3.0.0,<3.0.7
Reported by:
GitHub, FriendsOfPHP/security-advisories