PT-2025-55202 · Hackage · Crypton-X509-Store+1
Publicado
2025-11-17
·
Atualizado
2025-11-17
Nenhuma
Não há classificações de severidade ou métricas disponíveis. Quando houver, atualizaremos as informações correspondentes na página.
Private key leak via inherited file descriptor
The X.509 key reading function
readKeyFile opened a file
descriptor to the private key without setting the close-on-exec
flag. If a child process is execed at the same time, it would
inherit that file descriptor and could read the private key
material.Impact is limited to child processes that run untrusted code, but
that do not close inherited file descriptors. (For example, the
su(1) command.)This leak was fixed by setting the close-on-exec flag on
unix-based systems.
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Crypton-X509-Store
X509-Store