发布时间: 2025年3月4日
修改时间: 2025年3月4日
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs.
| NVD | openEuler | |
|---|---|---|
| Confidentiality | Low | |
| Attack Vector | Network | |
| CVSS评分 | N/A | 6.1 |
| Attack Complexity | Low | |
| Privileges Required | None | |
| Scope | Changed | |
| Integrity | Low | |
| User Interaction | Required | |
| Availability | None |
| 公告名 | 概要 | 发布时间 |
|---|---|---|
| KylinSec-SA-2025-1604 | golang security update | 2025年3月13日 |
| KylinSec-SA-2025-2438 | golang security update | 2025年6月3日 |
| 产品 | 包 | 状态 |
|---|---|---|
| KY3.4-5A | golang | Fixed |
| V6 | golang | Fixed |
