CVE Record: CVE-2020-4068

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

Expand or collapse notification button

Required CVE Record Information

Description

In APNSwift 1.0.0, calling APNSwiftSigner.sign(digest:) is likely to result in a heap buffer overflow. This has been fixed in 1.0.1.

CWE 1 Total

CWE-122: CWE-122: Heap-based Buffer Overflow

CVSS 1 Total

Product Status

Versions 1 Total

Default Status: unknown

affected

References 4 Total

Updated: 2024-08-04

This container includes required additional information provided by the CVE Program for this vulnerability.

References 4 Total

https://github.com/kylebrowning/APNSwift/security/advisories/GHSA-qh2w-vjxg-mjcg
external site
x_transferred
https://github.com/kylebrowning/APNSwift/issues/31
external site
x_transferred
https://github.com/kylebrowning/APNSwift/pull/32
external site
x_transferred
https://github.com/kylebrowning/APNSwift/commit/97fa7f69dcdd89168fff84e0ba8f999881ee3d3f
external site
x_transferred