| CVE-2022-3616 |
unknown |
— |
— |
|
|
|
4y ago |
OctoRPKI crashes when max iterations is reached in github.com/cloudflare/cfrpki |
| CVE-2021-3907 |
unknown |
— |
— |
|
|
|
4y ago |
OctoRPKI does not escape a URI with a filename containing "..", this allows a repository to create a file, (ex. rsync://example.org/repo/../../etc/cron.daily/evil.roa), which would then be written to… |
| CVE-2021-3978 |
unknown |
— |
— |
|
|
|
5y ago |
Improper Preservation of Permissions in github.com/cloudflare/cfrpki/cmd/octorpki in github.com/cloudflare/cfrpki |
| CVE-2021-3912 |
unknown |
— |
— |
|
|
|
5y ago |
Resource exhaustion via GZIP bomb in github.com/cloudflare/cfrpki |
| CVE-2021-3908 |
unknown |
— |
— |
|
|
|
5y ago |
Infinite certificate chain depth results in OctoRPKI running forever in github.com/cloudflare/cfrpki |
| CVE-2021-3909 |
unknown |
— |
— |
|
|
|
5y ago |
OctoRPKI does not limit the length of a connection, allowing for a slowloris DOS attack to take place which makes OctoRPKI wait forever. Specifically, the repository that OctoRPKI sends HTTP requests… |
| CVE-2021-3910 |
unknown |
— |
— |
|
|
|
5y ago |
Panic on NUL character in ROA in github.com/cloudflare/cfrpki |
| CVE-2021-3911 |
unknown |
— |
— |
|
|
|
5y ago |
Panic on misconfigured IP address in github.com/cloudflare/cfrpki |
| CVE-2021-3761 |
unknown |
— |
— |
|
|
|
5y ago |
Insufficient validation in github.com/cloudflare/cfrpki |
