MidnightBSD

Advisories for secure-compare_project

CVE-2015-9238 MEDIUM

secure-compare 3.0.0 and below do not actually compare two strings properly. compare was actually comparing the first argument with itself, meaning the check passed for any two strings of the same length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-697,CWE-134,

Products Affected

Vendor Product Version
secure-compare_project secure-compare *