CVE-2022-29161 Crypto script service uses hashing algorithm SHA1 with RSA for certificate signature in xwiki-platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. The XWiki Crypto API will generate X509 certificates signed by default using SHA1 with RSA, which is not considered safe anymore for use in certificate signatures, due to the risk of collision...

PT-2022-3499 · Xwiki · Xwiki Platform

Name of the Vulnerable Software and Affected Versions: XWiki Platform versions prior to 13.10.6 XWiki Platform versions prior to 14.3.1 XWiki Platform versions prior to 14.4-rc-1 Description: The XWiki Crypto API generates X509 certificates signed by default using SHA1 with RSA, which is not...

CVE-2021-33097

Time-of-check time-of-use vulnerability in the Crypto API Toolkit for IntelR SGX may allow a privileged user to potentially enable escalation of privilege via network access...

Design/Logic Flaw

Time-of-check time-of-use vulnerability in the Crypto API Toolkit for IntelR SGX may allow a privileged user to potentially enable escalation of privilege via network access...

CVE-2021-33097

CVE-2021-33097 affects the Crypto API Toolkit for Intel(R) SGX. It is a Time-of-check Time-of-use vulnerability that may allow a privileged user to escalate privileges via network access. The issue is documented across multiple sources, including Intel’s advisory and NVD, and specifically impacts...

CVE-2021-33097

Time-of-check time-of-use vulnerability in the Crypto API Toolkit for IntelR SGX may allow a privileged user to potentially enable escalation of privilege via network access...

Intel Crypto Api Toolkit 安全漏洞

Intel Crypto Api Toolkit is a cryptographic Api toolkit from Intel Corporation USA. The interface for securely running key generation and encryption operations enhances the security of data and key protection applications. A security vulnerability exists in Intel Crypto Api Toolkit that stems fro...

Crypto API Toolkit for Intel® SGX Advisory

Summary: A potential security vulnerability in the Crypto API Toolkit for Intel® SGX may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2021-33097 Description: Time-of-check time-of-use vulnerability i...

Loncom packer: from backdoors to Cobalt Strike

The previous story described an unusual way of distributing malware under disguise of an update for an expired security certificate. After the story went out, we conducted a detailed analysis of the samples we had obtained, with some interesting findings. All of the malware we examined from the...

Information Disclosure

kernel-rt is vulnerable to information disclosure. The vulnerability exists as the crypto API does not initialize certain length variables...

EulerOS Virtualization 2.5.4 : kernel (EulerOS-SA-2019-1204)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A security flaw was found in the Linux kernel in drivers/tty/ntty.c which allows local attackers ones who are able to access pseu...

USN-3930-2 linux-hwe, linux-azure vulnerabilities

USN-3930-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 18.10 for Ubuntu 18.04 LTS. Mathias Payer and Hui Peng discovered a use-after-free vulnerability in the Advanced Linux Sou...

EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-1028)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified oth...

Authorization Bypass

kernel-rt is vulnerable to authorization bypass attacks. The vulnerability exists as the Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a module name in the salgname field, a different vulnerability...

Unbreakable Enterprise kernel security update

2.6.39-400.304.1 - mnt: Prevent pivotroot from creating a loop in the mount tree Eric W. Biederman Orabug: 26575709 CVE-2014-7970 CVE-2014-7970 - vfs: more mntparent cleanups Al Viro Orabug: 26575709 CVE-2014-7970 - vfs: new internal helper: mnthasparentmnt Al Viro Orabug: 26575709 CVE-2014-7970 ...

CVE-2015-9177

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, ...

CVE-2015-9181

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, a...

Design/Logic Flaw

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, a...

Design/Logic Flaw

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, ...

Hardcoded credentials

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD...