Vigil@nce - Botan: two vulnerabilities
July 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of Botan.
Impacted products: Debian.
Severity: 2/4.
Creation date: 02/05/2016.
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Botan.
An attacker can trigger a fatal error in BIT STRING, in order to
trigger a denial of service. [severity:2/4; CVE-2015-5726]
An attacker can trigger a fatal error in BER Decoder, in order to
trigger a denial of service. [severity:2/4; CVE-2015-5727]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Botan-two-vulnerabilities-19501