Security Advisory

CVE-2026-27138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-06 21:28:14

Last updated 2026-03-10 13:35:19

Assigner Go

State PUBLISHED

Description

Certificate verification can panic when a certificate in the chain has an empty DNS name and another certificate in the chain has excluded name constraints. This can crash programs that are either directly verifying X.509 certificate chains, or those that use TLS.

← Browse all CVEs View on cve.org ↗