K16819: Linux kernel vulnerability CVE-2015-3331

Security Advisory Description The driverrfc4106decrypt function in arch/x86/crypto/aesni-intelglue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for encrypted data, which allows context-dependent attackers to cause a denial of service buffer overflow an...

K16427: Linux kernel vulnerability CVE-2013-7421

Security Advisory Description The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a module name in the salgname field, a different vulnerability than CVE-2014-9644. CVE-2013-7421 Impact There is no...

K17121: Linux network subsystem vulnerabilities CVE-2014-8160, CVE-2014-8172, CVE-2014-8173, CVE-2014-9428, CVE-2014-9644, CVE-2015-0274, and CVE-2015-2041

Security Advisory Description CVE-2014-8160 net/netfilter/nfconntrackprotogeneric.c in the Linux kernel before 3.18 generates incorrect conntrack entries during handling of certain iptables rule sets for the SCTP, DCCP, GRE, and UDP-Lite protocols, which allows remote attackers to bypass intended...

CVE-2022-21163

Improper access control in the Crypto API Toolkit for IntelR SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access...

Improper access control

Improper access control in the Crypto API Toolkit for IntelR SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-21163

Improper access control in the Crypto API Toolkit for IntelR SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-21163

CVE-2022-21163 concerns a vulnerability in the Crypto API Toolkit for Intel(R) SGX. Affected: toolkit versions before 2.0, specifically before commit ID 91ee496. Root cause: improper access control in the toolkit’s Crypto API, enabling an authenticated user to potentially escalate privileges via ...

CVE-2022-21163

Improper access control in the Crypto API Toolkit for IntelR SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access...

PT-2023-12663 · Intel · Crypto Api Toolkit For Intel Sgx

Name of the Vulnerable Software and Affected Versions: Crypto API Toolkit for IntelR SGX versions prior to 2.0 commit ID 91ee496 Description: The issue is related to improper access control, which may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel SGX SDK 安全漏洞

The Intel SGX SDK is a set of software development kits based on SGX Intel Software Security Extensions technology from Intel Corporation. A security vulnerability exists in Intel® SGX versions prior to 2.0 91ee496, which stems from the inclusion of improper access control in this Crypto API...

SUSE CVE-2013-7421

The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a module name in the salgname field, a different vulnerability than CVE-2014-9644...

SUSE CVE-2014-9644

The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AFALG socket with a parenthesized module template expression in the salgname field, as demonstrated by the vfataes expression, a different vulnerability than...

SUSE CVE-2015-3331

The driverrfc4106decrypt function in arch/x86/crypto/aesni-intelglue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for encrypted data, which allows context-dependent attackers to cause a denial of service buffer overflow and system crash or possibly...

Crypto API Toolkit for Intel® SGX Advisory

Summary: A potential security vulnerability in the Crypto API Toolkit for Intel® SGX Software Guard Extensions may allow escalation of privilege. Intel is releasing toolkit updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2022-21163 Description: Improper acce...

GHSA-H8V5-P258-PQF4 Use of a Broken or Risky Cryptographic Algorithm in XWiki Crypto API

Impact XWiki Crypto API will generate X509 certificates signed by default using SHA1 with RSA, which is not considered safe anymore for use in certificate signatures, due to the risk of collisions with SHA1. Note that this API is never used in XWiki Standard but it might be used in some extension...

Use of a Broken or Risky Cryptographic Algorithm in XWiki Crypto API

Impact XWiki Crypto API will generate X509 certificates signed by default using SHA1 with RSA, which is not considered safe anymore for use in certificate signatures, due to the risk of collisions with SHA1. Note that this API is never used in XWiki Standard but it might be used in some extension...

XWiki Crypto API Vulnerability (GHSA-h8v5-p258-pqf4)

XWiki is prone to a vulnerability in the Crypto API. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xwiki:xwiki"; ifdescription...

CVE-2022-29161

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. The XWiki Crypto API will generate X509 certificates signed by default using SHA1 with RSA, which is not considered safe anymore for use in certificate signatures, due to the risk of collision...

CVE-2022-29161 Crypto script service uses hashing algorithm SHA1 with RSA for certificate signature in xwiki-platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. The XWiki Crypto API will generate X509 certificates signed by default using SHA1 with RSA, which is not considered safe anymore for use in certificate signatures, due to the risk of collision...

CVE-2022-29161

CVE-2022-29161 concerns the XWiki Platform Crypto API generating X509 certificates signed by default with SHA-1 with RSA , a deprecated algorithm due to collision risks. The issue was patched in XWiki versions 13.10.6, 14.3.1 and 14.4-rc-1 , after which the API signs certificates with SHA-256 wit...