crypto/x509: mitigate DoS vector when intermediate certificate contains DSA public key - go - Fork of Go programming language with my patches.

diff options

author	Neal Patel <nealpatel@google.com>	2025-09-11 16:27:04 -0400
committer	Gopher Robot <gobot@golang.org>	2025-10-07 11:23:13 -0700
commit	6e4007e8cffbb870e6b606307ab7308236ecefb9 (patch)
tree	71b01b542985a369ca084e6d83f97fad113d54b1 /src/encoding
parent	6f7926589d03180863aa05cbb55a9d9c63e76b99 (diff)
download	go-6e4007e8cffbb870e6b606307ab7308236ecefb9.tar.xz

crypto/x509: mitigate DoS vector when intermediate certificate contains DSA public key

An attacker could craft an intermediate X.509 certificate containing a DSA public key and can crash a remote host with an unauthenticated call to any endpoint that verifies the certificate chain. Thank you to Jakub Ciolek for reporting this issue. Fixes CVE-2025-58188 Fixes #75675 Change-Id: I2ecbb87b9b8268dbc55c8795891e596ab60f0088 Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/2780 Reviewed-by: Damien Neil <dneil@google.com> Reviewed-by: Roland Shoemaker <bracewell@google.com> Reviewed-on: https://go-review.googlesource.com/c/go/+/709853 Reviewed-by: Carlos Amedee <carlos@golang.org> Auto-Submit: Michael Pratt <mpratt@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>

Diffstat (limited to 'src/encoding')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: