VDB
JLSEC-2025-93
JLSEC-2025-93
PUBLISHED
CVSS 9.300000190734863 CRITICAL
A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | GnuPG_jll | 0, 0 |
| Julia | Libksba_jll | 0, 0 |
Timeline
- Oct 17, 2025 CVE Published
- Nov 6, 2025 CVE Updated
References
- https://access.redhat.com/security/cve/CVE-2022-3515 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2135610 url
- https://dev.gnupg.org/rK4b7d9cd4a018898d7714ce06f3faf2626c14582b url
- https://security.netapp.com/advisory/ntap-20230706-0008/ url
- https://www.gnupg.org/blog/20221017-pepe-left-the-ksba.html url