5 matches found
OESA-2026-2859 gnupg2 security update
GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 also known as PGP. GnuPG enables encryption and signing of data and communication, and features a versatile key management system as well as access modules for public key directories. Security Fixes: CMS...
CVE-2026-57062
CMS Cryptographic Message Syntax parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is supposed to be 12 bytes but 4 bytes is accepted. NOTE: this is related to CVE-2026-34182...
CVE-2015-4550
The Cavium cryptographic-module firmware on Cisco Adaptive Security Appliance ASA devices with software 9.33 and 9.41.1 does not verify the AES-GCM Integrity Check Value ICV octets, which makes it easier for man-in-the-middle attackers to spoof IPSec and IKEv2 traffic by modifying packet data, ak...
Cisco ASA ICV Checksum IPSec/IKEv2 Message Content Modification Vulnerability
The Cisco Adaptive Security Appliance is an adaptive security appliance that provides modules for security and VPN services. A security vulnerability exists in the Cisco Adaptive Security Appliance due to the AES-GCM code of the Cavium Networks cryptographic module component of the program failin...
PT-2015-1409 · Cavium +1 · Cavium Cryptographic-Module +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA versions 9.33 through 9.41.1 Description: The issue is related to errors in cryptographic transformations in the Cisco ASA cryptographic module. This could allow a remote attacker to gain access to traffi...