This page collects WhisperX intelligence signals tagged #Certificate. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
Go 语言标准库的证书验证机制中发现一个潜在的服务拒绝(DoS)漏洞。当验证使用策略的证书链时,如果链中的证书包含非常大量的策略映射(policy mappings),验证过程会变得异常低效,可能消耗大量计算资源,导致服务中断。关键点在于,此漏洞仅影响对“受信任”证书链的验证——即那些由 VerifyOptions.Roots CertPool 或系统证书池中根证书颁发机构(CA)签发的证书。这意味着攻击者可能通过提交一个包含大量策略映射的、看似合法的受信任证书,来耗尽服务器的处理能力。 该漏洞被分配了编号 CVE-2026-32281,其影响范围覆盖 Go 的多个主要分支,包括 release-1.17、release-1.16...
A security audit has identified three vulnerabilities in rustls-webpki, a widely deployed Rust library that handles X.509 certificate validation for TLS implementations. The findings, catalogued under RUSTSEC-2026-0104 and RUSTSEC-2026-0098, reveal critical flaws in certificate revocation list (CRL) parsing and URI nam...