phpseclib/phpseclib Security Advisories for 2.0.28 (4)
-
[HIGH] Name confusion in x509 Subject Alternative Name fields
PKSA-4p7m-np8m-fq35 CVE-2023-52892 GHSA-ff7q-6vwh-v9m4
Affected version: >=3.0.0,<3.0.33|>=2.0.0,<2.0.46|<1.0.22
Reported by:
GitHub -
[HIGH] phpseclib a large prime can cause a denial of service
PKSA-t5xz-td8w-f35v CVE-2024-27354 GHSA-hg35-mp25-qf6h
Affected version: >=3.0.0,<3.0.36|>=2.0.0,<2.0.47|>=1.0.0,<1.0.23
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] phpseclib does not properly limit the ASN1 OID length
PKSA-jsh4-f6tg-bwyq CVE-2024-27355 GHSA-jr22-8qgm-4q87
Affected version: >=3.0.0,<3.0.36|>=2.0.0,<2.0.47|>=1.0.0,<1.0.23
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Improper Certificate Validation in phpseclib
PKSA-mnsd-qtjt-pgcq CVE-2021-30130 GHSA-vf4w-fg7r-5v94
Affected version: <2.0.31|>=3.0.0,<3.0.7
Reported by:
GitHub, FriendsOfPHP/security-advisories