Insufficient data validation in yubikey-val
Reduced initial randomness on FIPS keys
Unchecked buffer in libu2f-host
Unchecked buffer in libykpiv
WebUSB bypass of U2F phishing protection
Security issue with password protection in OATH Applet on YubiKey NEO
Infineon weak RSA key generation
YubiKey NEO OpenPGP PIN validation logic issue
Read more on how Yubico rates the severity of security issues.
Sign up to receive Security Advisories via email:
(Email notifications are sent only for High and Critical security issue ratings)
Thank you for signing up to receive Security Advisories from Yubico.