69 matches found
Security Bulletin: Vulerability in IBM Spectrum Symphony with OpenSSL
Summary Vulerability in IBM Spectrum Symphony with OpenSSL Vulnerability Details CVEID:CVE-2024-13176 DESCRIPTION: Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDS...
Moderate: Red Hat Security Advisory: mysql:8.4 security update
An update for the mysql:8.4 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CLSA-2025-1751889283 openssl: Fix of CVE-2024-13176
CVE-2024-13176: fix timing side-channel in ECDSA signature computation...
CLSA-2025-1751888871 openssl: Fix of CVE-2024-13176
CVE-2024-13176: fix timing side-channel in ECDSA signature computation...
Security update for openssl-3
This update for openssl-3 fixes the following issues: CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation bsc1236136 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...
CLSA-2025-1751142817 openssl: Fix of CVE-2024-13176
CVE-2024-13176: fix timing side-channel in ECDSA signature computation...
SUSE SLED15: libopenssl-3-devel / libopenssl-3-fips-provider / etc (SUSE-SU-2025:02042-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02042-1 advisory. - CVE-2025-27587: timing side-channel vulnerability in the P-384 implementation when used with ECDSA...
Security Bulletin: This Power System update is being released to address CVE-2024-13176
Summary This affects the BMC's HTTPS and SSH interfaces. Vulnerability Details CVEID:CVE-2024-13176 DESCRIPTION: Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDSA...
SUSE: Security Advisory (SUSE-SU-2025:0430-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2025:0613-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-4176 : libcrypto1.1-udeb - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4176 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4176-1 [email protected] https://www.debian.org/lts/security/...
[SECURITY] [DLA 4176-1] openssl security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4176-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk May 24, 2025 https://wiki.debian.org/LTS -...
Security Bulletin: Vulnerability in OpenSSL (CVE-2024-13176) affects PowerVM
Summary OpenSSL is used by PowerVM to support virtual TPM operations. This bulletin provides a remediation for the impacted vulnerability, CVE-2024-13176 by upgrading PowerVM and thus addressing the exposure to the openssl vulnerability. Vulnerability Details CVEID:CVE-2024-13176 DESCRIPTION: Iss...
Security update for openssl-1_1
This update for openssl-11 fixes the following issues: CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation bsc1236136. Other bugfixes: Non approved PBKDF parameters wrongly resulting as approved bsc1236771. Patch Instructions: To install this SUSE update use the SUSE...
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1533)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1532)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 Security Update : openssl-1_1 (SUSE-SU-2025:0613-2)
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:0613-2 advisory. - CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation bsc1236136. Other bugfixes: - Non approved PBKDF parameters wrongly...
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1432)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CBL Mariner 2.0 Security Update: edk2 / openssl (CVE-2024-13176)
The version of edk2 / openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-13176 advisory. - Issue summary: A timing side-channel which could potentially allow recovering the private key exists...
CVE-2024-13176 affecting package edk2 for versions less than 20240524git3e722403cd16-6
CVE-2024-13176 affecting package edk2 for versions less than 20240524git3e722403cd16-6. A patched version of the package is available...