Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.4 views

SUSE CVE-2018-8970

The intx509paramsethosts function in lib/libcrypto/x509/x509vpm.c in LibreSSL 2.7.0 before 2.7.1 does not support a certain special case of a zero name length, which causes silent omission of hostname verification, and consequently allows man-in-the-middle attackers to spoof servers and obtain...

7.4CVSS6.6AI score0.01056EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/09/04 12:0 a.m.25 views

openSUSE Security Update : libressl (openSUSE-2018-953)

This update for libressl to version 2.8.0 fixes the following issues : Security issues fixed : - CVE-2018-12434: Avoid a timing side-channel leak when generating DSA and ECDSA signatures. boo1097779 - Reject excessively large primes in DH key generation. - CVE-2018-8970: Fixed a bug in...

7.4CVSS5.5AI score0.01056EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2018/09/04 12:0 a.m.22 views

openSUSE: Security Advisory for libressl (openSUSE-SU-2018:2597-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS5.2AI score0.01056EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2018/03/24 9:29 p.m.3 views

CVE-2018-8970

The intx509paramsethosts function in lib/libcrypto/x509/x509vpm.c in LibreSSL 2.7.0 before 2.7.1 does not support a certain special case of a zero name length, which causes silent omission of hostname verification, and consequently allows man-in-the-middle attackers to spoof servers and obtain...

7.4CVSS5.5AI score0.01056EPSS
Exploits0References4
OSV
OSV
added 2018/03/24 9:29 p.m.12 views

CVE-2018-8970

The intx509paramsethosts function in lib/libcrypto/x509/x509vpm.c in LibreSSL 2.7.0 before 2.7.1 does not support a certain special case of a zero name length, which causes silent omission of hostname verification, and consequently allows man-in-the-middle attackers to spoof servers and obtain...

7.4CVSS6AI score
Exploits0References3
Rows per page
Query Builder