12 matches found
Security update for Botan (important)
openSUSE Security Update: Security update for Botan Announcement ID: openSUSE-SU-2026:0142-1 Rating: important References: 1261880 Cross-References: CVE-2026-34582 CVSS scores: CVE-2026-34582 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Backports SLE-15-SP7 A...
OPENSUSE-SU-2026:20528-1 Security update for Botan
This update for Botan fixes the following issues: - CVE-2026-34582: Fixed a client authentication bypass in TLS 1.3 implementation bsc1261880...
SUSE CVE-2026-34582
Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationData records to be processed prior to the Finished message being received. A server which is attempting to enforce client authentication via certificates can by bypassed by a client which...
CVE-2026-34582
creationtimestamp| type| source ---|---|--- 2026-04-07 23:21:25+00:00| seen| Telegram/ob3ye0FCdfhceb6CimILWC3jRIWmZERTbGMc-OQRsW6HR0 2026-04-08 01:26:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mix56pyoi52o...
CVE-2026-34582
Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationData records to be processed prior to the Finished message being received. A server which is attempting to enforce client authentication via certificates can by bypassed by a client which...
Linux Distros Unpatched Vulnerability : CVE-2026-34582
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationData records to be processed prior to the Finished...
CVE-2024-34582
Sunhillo SureLine through 8.10.0 on RICI 5000 devices allows cgi/usrPasswd.cgi useridchange XSS within the Forgot Password feature...
PT-2025-34582 · Git · Libwebp
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=438294044 Crash type: Null-dereference READ Crash state: enc [email protected]...
CVE-2024-34582
Sunhillo SureLine through 8.10.0 on RICI 5000 devices allows cgi/usrPasswd.cgi useridchange XSS within the Forgot Password feature...
CVE-2021-34582
creationtimestamp| type| source ---|---|--- 2021-11-10 14:36:21+00:00| seen| https://t.me/cibsecurity/32147...
CVE-2021-34582
Phoenix Contact FL MGUARD 1102 and 1105 are affected in versions 1.4.0, 1.4.1, and 1.5.0. A user with high privileges can inject HTML code (XSS) through the web-based management interface or the REST API when a manipulated certificate file is used. The vulnerability stems from the handling of cer...
CVE-2025-34582
CVE-2025-34582 is rejected/not used; this ID does not represent an active vulnerability entry.