Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.
libksba