CVE-2024-26130 | pyca cryptography up to 42.0.3 PrivateFormat.PKCS12.encryption_builder.hmac_hash null pointer dereference

Posted by Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability has been found in pyca cryptography up to 42.0.3 and classified as problematic. Affected by this vulnerability is the function PrivateFormat.PKCS12.encryption_builder.hmac_hash. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2024-26130. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26130 | pyca cryptography up to 42.0.3 PrivateFormat.PKCS12.encryption_builder.hmac_hash null pointer dereference

Related Posts

CVE-2024-25447 | imlib2 1.9.1 Image imlib_load_image_with_error_return heap-based overflow

CVE-2023-50992 | Tenda i29 1.0.0.5 setPing ip stack-based overflow

CVE-2023-6583 | Import and Export Users and Customers Plugin up to 1.24.2 on WordPress Recurring Import path traversal

CVE-2021-22281 | B&R Industrial Automation Studio up to 4.x path traversal