Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2016-2850HistoryMay 13, 2016 - 2:59 p.m.
CVE-2016-2850
2016-05-1314:59:00
Debian Security Bug Tracker
security-tracker.debian.org
5
0.004 Low
EPSS
Percentile
72.3%
Botan 1.11.x before 1.11.29 does not enforce TLS policy for (1) signature algorithms and (2) ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | botan1.10 | < 1.10.16-1 | botan1.10_1.10.16-1_all.deb |
Related
cvelist
cvelist
CVE-2016-2850
2016-05-13 14:00:00
nvd
nvd
CVE-2016-2850
2016-05-13 14:59:11
ubuntucve
ubuntucve
CVE-2016-2850
2016-05-13 00:00:00
cve
cve
CVE-2016-2850
2016-05-13 14:59:11
prion
prion
Code injection
2016-05-13 14:59:00
gentoo
gentoo
Botan: Multiple vulnerabilities
2017-01-11 00:00:00
nessus
nessus
GLSA-201701-23 : Botan: Multiple vulnerabilities
2017-01-12 00:00:00
Fedora 24 : botan-1.10.13-1.fc24 (2016-a545f81683)
2016-05-09 00:00:00
archlinux
archlinux
botan: multiple issues
2016-03-24 00:00:00
openvas
openvas
Fedora Update for botan FEDORA-2016-fe0d8f126a
2016-06-08 00:00:00
Fedora Update for botan FEDORA-2016-f2aae0dbc5
2016-06-08 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: botan-1.10.13-1.fc22
2016-05-16 14:57:35
[SECURITY] Fedora 23 Update: botan-1.10.13-1.fc23
2016-05-15 05:36:49
[SECURITY] Fedora 24 Update: botan-1.10.13-1.fc24
2016-05-07 12:21:54