Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
13 Dec 2020
16 Dec 2020
How to fix?
p11-kit to version 0.23.15-2+deb10u1 or higher.
Note: Versions mentioned in the description apply to the upstream
How to fix? for
Debian:10 relevant versions.
An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.