mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-13 01:44:43 +02:00
marc
1.3 KiB
1.3 KiB
CVE-2021-34558
Description
The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.
POC
Reference
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html
Github
- https://github.com/0day404/vulnerability-poc
- https://github.com/20142995/sectool
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ArrestX/--POC
- https://github.com/KayCHENvip/vulnerability-poc
- https://github.com/Miraitowa70/POC-Notes
- https://github.com/Threekiii/Awesome-POC
- https://github.com/alexzorin/cve-2021-34558
- https://github.com/d4n-sec/d4n-sec.github.io
- https://github.com/henriquebesing/container-security
- https://github.com/kb5fls/container-security
- https://github.com/ruzickap/malware-cryptominer-container
- https://github.com/taielab/awesome-hacking-lists