d124dc5 · Security Portfolio

Code Commits Tags

Drop 'CVE pending' tags from finding badge and teaser

d124dc5 Zion Boggan committed on May 31, 2026 (3 weeks ago)

featured-finding/index.html +1 -1

		@@ -185,7 +185,7 @@

		<header class="hero"><div class="wrap">
		<div class="crumb mono"><a href="/">home</a> / featured finding</div>
	-	<div class="status mono"><span class="pulse"></span>Coordinated disclosure in progress · CVE pending</div>
	+	<div class="status mono"><span class="pulse"></span>Coordinated disclosure in progress</div>
		<h1>A certificate path-length limit that disappears<br class="dtop">when you remove an unrelated field</h1>
		<p class="lede">A widely-deployed open-source cryptography library enforces an <b>RFC 5280
		path-length constraint</b> (the rule that stops a subordinate CA from minting further

index.html +2 -2

		@@ -268,7 +268,7 @@
		</div></header>

		<div class="wrap"><a class="featured" href="/featured-finding/">
	-	<div class="ff-status mono"><span class="pulse"></span>Coordinated disclosure in progress · CVE pending</div>
	+	<div class="ff-status mono"><span class="pulse"></span>Coordinated disclosure in progress</div>
		<div class="ff-main">
		<div>
		<div class="ff-tag mono">★ FEATURED FINDING · LIVE VULNERABILITY RESEARCH</div>
		@@ -279,7 +279,7 @@
		security patch the maintainers had just shipped. <b>Interactive proof you can run in the browser.</b></p>
		<div class="ff-facts mono">
		<span>CWE-295</span><span>RFC 5280 §6.1.4</span><span>CA constraint bypass</span>
	-	<span>Confirmed on the current shipped release</span><span>CVE pending</span>
	+	<span>Confirmed on the current shipped release</span>
		</div>
		</div>
		<span class="ff-go mono">Open the finding →</span>