CVE-2018-15560
N/A
N/A
Summary
PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c, related to the AESNI_encrypt and AESNI_decrypt functions, leading to the mishandling of messages shorter than 16 bytes.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://whitehatck01.blogspot.com/2018/08/integer-overflow-vulnerability-in.html
- https://github.com/Legrandin/pycryptodome/issues/198
References
- https://whitehatck01.blogspot.com/2018/08/integer-overflow-vulnerability-in.html
- https://github.com/Legrandin/pycryptodome/issues/198
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.