Hanno Böck discovered that Libksba incorrectly handled certain S/MIME messages or ECC based OpenPGP data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "1.3.0-3ubuntu0.14.04.1", "binary_name": "libksba8" } ] }
{ "cves": [ { "id": "CVE-2014-9087", "severity": [ { "score": "medium", "type": "Ubuntu" } ] } ], "ecosystem": "Ubuntu:14.04:LTS" }
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2427-1.json"