An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "p11-kit-dbgsym": "0.23.2-5~ubuntu16.04.2", "p11-kit-modules-dbgsym": "0.23.2-5~ubuntu16.04.2", "libp11-kit-dev": "0.23.2-5~ubuntu16.04.2", "p11-kit": "0.23.2-5~ubuntu16.04.2", "libp11-kit0-dbgsym": "0.23.2-5~ubuntu16.04.2", "p11-kit-modules": "0.23.2-5~ubuntu16.04.2", "libp11-kit0": "0.23.2-5~ubuntu16.04.2" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "p11-kit-dbgsym": "0.23.9-2ubuntu0.1", "p11-kit-modules-dbgsym": "0.23.9-2ubuntu0.1", "libp11-kit-dev": "0.23.9-2ubuntu0.1", "p11-kit": "0.23.9-2ubuntu0.1", "libp11-kit0-dbgsym": "0.23.9-2ubuntu0.1", "p11-kit-modules": "0.23.9-2ubuntu0.1", "libp11-kit0": "0.23.9-2ubuntu0.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "p11-kit-dbgsym": "0.23.20-1ubuntu0.1", "p11-kit-modules-dbgsym": "0.23.20-1ubuntu0.1", "libp11-kit-dev": "0.23.20-1ubuntu0.1", "p11-kit": "0.23.20-1ubuntu0.1", "libp11-kit0-dbgsym": "0.23.20-1ubuntu0.1", "p11-kit-modules": "0.23.20-1ubuntu0.1", "libp11-kit0": "0.23.20-1ubuntu0.1" } ] }