In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introduced in Botan 1.11.34 (November 2016).
References
Link | Resource |
---|---|
https://github.com/randombit/botan/releases/tag/2.19.3 | Release Notes Third Party Advisory |
https://github.com/randombit/botan/security/advisories/GHSA-4v9w-qvcq-6q7w | Mitigation Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-11-27T00:00:00
Updated: 2022-11-27T00:00:00
Reserved: 2022-10-24T00:00:00
Link: CVE-2022-43705
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-11-27T04:15:10.237
Modified: 2022-12-01T19:20:12.950
Link: CVE-2022-43705
JSON object: View
Redhat Information
No data.
CWE