MidnightBSD

Advisories for osslsigncode_project

CVE-2023-36377

Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to execute arbitrary code via a crafted .exe, .sys, and .dll files.

Products Affected

Vendor Product Version
osslsigncode_project osslsigncode 2.3
CVE-2025-70888

An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate privileges via the osslsigncode.c component

Products Affected

Vendor Product Version
osslsigncode_project osslsigncode *