Lucene search
Gentoo FoundationMGASA-2023-0313HistoryNov 09, 2023 - 3:55 p.m.
Updated openssl packages fix a security vulnerability
2023-11-0915:55:51
Gentoo Foundation
advisories.mageia.org
24
openssl
security vulnerability
key length
iv length
update
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
45.3%
The updated packages fix a security vulnerability: Incorrect cipher key & IV length processing. (CVE-2023-5363)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 9 | noarch | openssl | < 3.0.12-1 | openssl-3.0.12-1.mga9 |
References
Related
nessus
nessus
Oracle Linux 9 : openssl (ELSA-2024-0310)
2024-01-23 00:00:00
RHEL 9 : openssl (RHSA-2024:0500)
2024-01-25 00:00:00
Oracle MySQL Connectors C++ and ODBC (January 2024 CPU)
2024-01-19 00:00:00
prion
prion
Design/Logic Flaw
2023-10-25 18:17:00
almalinux
almalinux
Moderate: openssl security update
2024-01-22 00:00:00
redhatcve
redhatcve
CVE-2023-5363
2023-10-25 11:57:11
cgr
cgr
CVE-2023-5363 vulnerabilities
2024-05-19 03:07:16
alpinelinux
alpinelinux
CVE-2023-5363
2023-10-25 18:17:43
freebsd
freebsd
OpenSSL -- potential loss of confidentiality
2023-10-24 00:00:00
mageia
mageia
Updated quictls packages fix a security vulnerability
2023-11-12 03:44:53
osv
osv
Moderate: openssl security update
2024-01-22 00:00:00
openssl - security update
2023-10-24 00:00:00
CVE-2023-5363
2023-10-25 18:17:43
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0313)
2023-11-10 00:00:00
Debian: Security Advisory (DSA-5532-1)
2023-10-25 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2023-5363
2023-10-24 00:00:00
cve
cve
CVE-2023-5363
2023-10-25 18:17:43
debian
debian
[SECURITY] [DSA 5532-1] openssl security update
2023-10-24 19:19:01
oraclelinux
oraclelinux
openssl security update
2024-01-22 00:00:00
openssl security update
2024-01-25 00:00:00
nvd
nvd
CVE-2023-5363
2023-10-25 18:17:43
redhat
redhat
(RHSA-2024:0310) Moderate: openssl security update
2024-01-22 01:04:54
(RHSA-2024:0500) Moderate: openssl security update
2024-01-25 16:25:40
ibm
ibm
f5
f5
K000138177 : OpenSSL vulnerability CVE-2023-5363
2024-01-10 00:00:00
wolfi
wolfi
CVE-2023-5363 vulnerabilities
2024-06-21 15:32:02
ubuntucve
ubuntucve
CVE-2023-5363
2023-10-24 00:00:00
redos
redos
ROS-20231110-02
2023-11-10 00:00:00
ROS-20240409-06
2024-04-09 00:00:00
ROS-20231109-01
2023-11-09 00:00:00
cvelist
cvelist
CVE-2023-5363 Incorrect cipher key & IV length processing
2023-10-24 15:31:40
debiancve
debiancve
CVE-2023-5363
2023-10-25 18:17:43
veracode
veracode
Information Disclosure
2023-10-28 00:48:09
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0124
2023-10-24 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0496
2023-10-25 00:00:00
cloudfoundry
cloudfoundry
USN-6450-1: OpenSSL vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2023-10-24 00:00:00
aix
aix
ics
ics
Siemens SIMATIC RTLS Locating Manager
2024-05-16 12:00:00
hp
hp
HP Device Manager Vulnerability Update (5.0.12)
2024-01-26 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
45.3%
Related for MGASA-2023-0313