Recently released cryptography code easily undone by trivial buffer overflow

Google Project Zero researcher Tavis Ormandy on Thursday reported a severe flaw in Libgcrypt 1.9.0, an update to the widely used cryptographic library that was released ten days ago.…

The text above is a summary, you can read full article here.