Lucene search
K

628 matches found

CNVD
CNVD
added 2016/05/06 12:0 a.m.3 views

Botan ECDSA Bypass Attack Vulnerability

Botan is a C++ library of cryptographic algorithms that supports AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. A security vulnerability exists in Botan that allows remote attackers to exploit the vulnerability to perform a bypass attack on ECDSA...

7.5CVSS9.2AI score0.02443EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/06 12:0 a.m.4 views

Botan RSA Decryption Vulnerability

Botan is a C++ library of cryptographic algorithms that supports AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. A security vulnerability exists in Botan that allows remote attackers to perform RSA decryption by exploiting the vulnerability to perform a bypass attack...

7.5CVSS9.5AI score0.02443EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/04/28 12:0 a.m.34 views

botan -- multiple vulnerabilities

Jack Lloyd reports: Botan 1.10.13 has been released backporting some side channel protections for ECDSA signatures CVE-2016-2849 and PKCS 1 RSA decryption CVE-2015-7827...

7.5CVSS7.8AI score0.02443EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/04/01 12:0 a.m.32 views

FreeBSD : Botan BER Decoder vulnerabilities (2004616d-f66c-11e5-b94c-001999f8d30b)

The botan developers reports : Excess memory allocation in BER decoder - The BER decoder would allocate a fairly arbitrary amount of memory in a length field, even if there was no chance the read request would succeed. This might cause the process to run out of memory or invoke the OOM killer...

7.8CVSS7.9AI score0.01483EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/04/01 12:0 a.m.21 views

FreeBSD : Multiple vulnerabilities in Botan (4cd9b19f-f66d-11e5-b94c-001999f8d30b)

The botan developers reports : Infinite loop in modular square root algorithm - The ressol function implements the Tonelli-Shanks algorithm for finding square roots could be sent into a nearly infinite loop due to a misplaced conditional check. This could occur if a composite modulus is provided,...

10CVSS8.6AI score0.06677EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2016/03/24 12:0 a.m.45 views

botan: multiple issues

CVE-2016-2849 ECDSA side channel: ECDSA and DSA signature algorithms perform a modular inverse on the signature nonce k. The modular inverse algorithm used had input dependent loops, and it is possible a side channel attack could recover sufficient information about the nonce to eventually...

5CVSS1.6AI score0.02443EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/08 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2016-0102)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.8AI score0.06677EPSS
Exploits0References4
Mageia
Mageia
added 2016/03/07 9:51 p.m.38 views

Updated botan packages fix security vulnerability

The BER decoder would crash due to reading from offset 0 of an empty vector if it encountered a BIT STRING which did not contain any data at all. This can be used to easily crash applicatons reading untrusted ASN.1 data, but does not seem exploitable for code execution CVE-2015-5726. The BER...

10CVSS9.6AI score0.06677EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.28 views

Fedora 22 : botan-1.10.12-1.fc22 / code-editor-2.8.1-13.fc22 / monotone-1.1-13.fc22 / etc (2016-1c08d77b96)

Security fix for CVE-2016-2194, CVE-2016-2195, CVE-2016-2196 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

10CVSS8AI score0.06677EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2016/03/01 12:0 a.m.18 views

Fedora Update for botan FEDORA-2016-1

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.7AI score0.06677EPSS
Exploits0References2
Fedora
Fedora
added 2016/02/29 10:26 p.m.28 views

[SECURITY] Fedora 22 Update: botan-1.10.12-1.fc22

Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...

10CVSS1.8AI score0.06677EPSS
Exploits0
Fedora
Fedora
added 2016/02/23 7:24 p.m.23 views

[SECURITY] Fedora 23 Update: botan-1.10.12-1.fc23

Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...

10CVSS1.8AI score0.06677EPSS
Exploits0
ArchLinux
ArchLinux
added 2016/02/10 12:0 a.m.42 views

botan: multiple issues

CVE-2016-2194 denial of service The ressol function implements the Tonelli-Shanks algorithm for finding square roots could be sent into a nearly infinite loop due to a misplaced conditional check. This could occur if a composite modulus is provided, as this algorithm is only defined for primes...

10CVSS2.6AI score0.06677EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2016/02/01 12:0 a.m.30 views

Multiple vulnerabilities in Botan

The botan developers reports: Infinite loop in modular square root algorithm - The ressol function implements the Tonelli-Shanks algorithm for finding square roots could be sent into a nearly infinite loop due to a misplaced conditional check. This could occur if a composite modulus is provided, ...

7.5CVSS2.2AI score0.02558EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/08/03 12:0 a.m.36 views

Botan BER Decoder vulnerabilities

The botan developers reports: Excess memory allocation in BER decoder - The BER decoder would allocate a fairly arbitrary amount of memory in a length field, even if there was no chance the read request would succeed. This might cause the process to run out of memory or invoke the OOM killer. Cra...

8.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2014/05/26 12:0 a.m.17 views

Fedora Update for botan FEDORA-2014-6237

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2014/05/26 12:0 a.m.11 views

Fedora Update for botan FEDORA-2014-6263

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2014/05/21 2:37 a.m.16 views

[SECURITY] Fedora 20 Update: botan-1.10.8-1.fc20

Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...

1.8AI score
Exploits0
Fedora
Fedora
added 2014/05/21 2:31 a.m.13 views

[SECURITY] Fedora 19 Update: botan-1.8.14-3.fc19

Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...

1.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/05/21 12:0 a.m.25 views

Fedora 19 : botan-1.8.14-3.fc19 (2014-6237)

Add a patch to fix a bug in primality testing. See also http://botan.randombit.net/relnotes/1108.html. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

5.4AI score
Exploits0References2
Rows per page
Query Builder