CVE-2024-45237

Name of the Vulnerable Software and Affected Versions: Fort versions prior to 1.6.3

Description: The issue is related to a buffer overflow in the stack due to improper sanitization of the length of a Key Usage extension in a resource certificate served by a malicious RPKI repository. This can allow a remote attacker to execute arbitrary code. A malicious RPKI repository that descends from a trusted Trust Anchor can serve a resource certificate containing a Key Usage extension composed of more than two bytes of data, which Fort writes into a 2-byte buffer without properly sanitizing its length, leading to a buffer overflow.

Recommendations: For versions prior to 1.6.3, update to version 1.6.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the RPKI repository or disabling the use of resource certificates with Key Usage extensions until a patch is available. Avoid using the Key Usage extension in resource certificates served by RPKI repositories until the issue is resolved.