Time for me to dust off CVE-2010-3170 again? :-) | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		richm44 53 days ago \| parent \| context \| favorite \| on: Getting ready to issue IP address certificates Time for me to dust off CVE-2010-3170 again? :-)

NicolaiS 53 days ago [–]

I guess a bunch of "roll your own X.509 validation"-logic will have that bug, but to exploit it you need a misbehaving CA to issue you such a cert (i.e. low likelihood)

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact