Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A NULL pointer dereference flaw was found in pesign's cms_set_pw_data() function of the cms_common.c file. The function fails to handle the NULL pwdata invocation from daemon.c, which leads to an explicit NULL dereference and crash on all attempts to daemonize pesign.
CVSS Information
N/A
Vulnerability Type
空指针解引用
Vulnerability Title
RedHat pesign 代码问题漏洞
Vulnerability Description
pesign是PE-COFF 二进制文件的签名工具,希望至少模糊地符合PE和Authenticode 规范。 pesign 存在安全漏洞,该漏洞源于cms_common.c文件中的cms_set_pw_data()函数无法处理来自daemon.c的NULL pwdata调用,导致显式 NULL 取消引用并在所有尝试启用pesign守护进程时发生崩溃。
CVSS Information
N/A
Vulnerability Type
N/A