Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
有符号至无符号转换错误
Vulnerability Title
Sequoia PGP 安全漏洞
Vulnerability Description
Sequoia PGP是sequoia-pgp开源的一个Rust库。 Sequoia PGP 2.1.0之前版本存在安全漏洞,该漏洞源于aes_key_unwrap在传递过短密文时会崩溃,可能导致应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A