x509 certificates

Discussions tagged with x509 certificates on WindowsForum.com cover security vulnerabilities and fixes related to X.509 certificate chain verification. One thread addresses CVE-2026-27138, a panic in Go's crypto/x509 package when an intermediate or leaf certificate contains an empty DNS name alongside excluded name constraints in another certificate. This issue affects Go 1.26 and is resolved in Go 1.26.1, causing application crashes during TLS or direct X.509 verification. The content focuses on the technical details of the vulnerability, its impact on availability, and the specific conditions required for exploitation, such as the presence of a trusted root. No other topics like Windows, Microsoft, or enterprise IT are discussed.