Nexus Documentation
CURL vulnerability information (CVE-2023-38545) - Nexus awareness advisory on Microsoft's update KB5014754

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

When object history entries are created, they are signed as explained in Chained signature for object history in Identity Manager. Many users may use Identity Manager in parallel, but a chained signature requires a strict ordering of the entries. Furthermore, as the signature of the previous entry is also signed by the next entry's signature, entries need to be signed sequentially. This introduces a bottleneck, as users access the system in parallel but the history they generate must be signed sequentially.

When history entries need to be signed, they must wait in a queue for any prior entries that have not been signed yet. When new entries are generated faster than they can be signed, this can effectively block the system. A growing queue is a telltale sign that this situation may be approaching.


  • No labels

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions