Lucene search
K

96 matches found

Oracle linux
Oracle linux
added 2026/01/20 12:0 a.m.7 views

kernel security update

6.12.0-124.28.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...

5.4AI score0.00173EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 4 : nss-util-3.14.3-3.AXS4, nss-softokn-3.14.3-3.AXS4, nspr-4.9.5-2.AXS4, nss-3.14.3-4.0.1.AXS4 (AXSA:2013-618:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-618:04 advisory. nss: Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

5CVSS7AI score0.35584EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 7 : nss-softokn-3.90.0-6.0.1.el7.AXS7 (AXSA:2025-9721:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9721:01 advisory. Network Security Services Softoken Cryptographic Module Security fixes: - CVE-2023-5388: fix timing attack against RSA decryption - Bug 1784253: avoid...

6.5CVSS7.3AI score0.00816EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/11/25 12:0 a.m.4 views

openssl security update

3.5.1-4.0.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 3.5.1.openela.0.1 - Add OpenELA specific changes 1:3.5.1-4 - Fix CVE-2025-9230 Resolves: RHEL-115929...

7.5CVSS7.1AI score0.01744EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-4014

Malware in sbrugna...

2.6CVSS6.4AI score0.00631EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/15 12:0 a.m.3 views

Oracle Linux 10 : kernel (ELSA-2025-15662)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-15662 advisory. 6.12.0-55.32.1.0.1 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 -...

7.4CVSS7.6AI score0.01345EPSS
Exploits8References2
OSV
OSV
added 2025/09/05 6:15 p.m.3 views

DEBIAN-CVE-2025-39722

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Prevent crash on suspend with iMX8QM / iMX8ULP Since the CAAM on these SoCs is managed by another ARM core, called the SECO Security Controller on iMX8QM and Secure Enclave on iMX8ULP, which also reserves access to...

5.5CVSS5.4AI score0.00134EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/05 12:0 a.m.5 views

VTun-ng 安全漏洞

vtun-ng is an application by Jan-Espen Oversand Individual Developer. A security vulnerability exists in VTun-ng 3.0.17 and earlier versions, which stems from a failure in the initialization of the cryptographic module that could lead to a plaintext transfer...

8.7CVSS6.5AI score0.00191EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/07/04 12:0 a.m.3 views

Oracle Linux 10 : kernel (ELSA-2025-8374)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8374 advisory. 6.12.0-55.19.1.0.10.OL10 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate...

7.8CVSS7AI score0.00226EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/04 12:0 a.m.5 views

Oracle Linux 10 : kernel (ELSA-2025-8669)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8669 advisory. 6.12.0-55.19.1.0.10.OL10 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate...

7.8CVSS7.1AI score0.00214EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/02/26 2:23 a.m.1 views

CVE-2022-49566 crypto: qat - fix memory leak in RSA

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix memory leak in RSA When an RSA key represented in form 2 as defined in PKCS 1 V2.1 is used, some components of the private key persist even after the TFM is released. Replace the explicit calls to free the buffe...

6.4AI score0.00249EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/09/03 10:15 p.m.2 views

CVE-2024-45615

A vulnerability was found in OpenSC, OpenSC tools, PKCS11 module, minidriver, and CTK. The problem is missing initialization of variables expected to be initialized as arguments to other functions, etc...

3.9CVSS6.5AI score0.00355EPSS
Exploits0References3
OSV
OSV
added 2024/09/03 10:15 p.m.8 views

AZL-48832 CVE-2024-45615 affecting package opensc 0.23.0-5

A vulnerability was found in OpenSC, OpenSC tools, PKCS11 module, minidriver, and CTK. The problem is missing initialization of variables expected to be initialized as arguments to other functions, etc...

3.9CVSS6.5AI score0.00355EPSS
Exploits0References1
OSV
OSV
added 2024/09/03 10:15 p.m.1 views

UBUNTU-CVE-2024-45616

A vulnerability was found in OpenSC, OpenSC tools, PKCS11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. The following problems were caused by insufficient control of the response AP...

3.9CVSS7.2AI score0.00355EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2023/08/14 7:15 p.m.7 views

CVE-2023-39908

The PKCS11 module of the YubiHSM 2 SDK through 2023.01 does not properly validate the length of specific read operations on object metadata. This may lead to disclosure of uninitialized and previously used memory...

7.5CVSS7.1AI score0.00481EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.11 views

Red Hat OpenShift Container Platform 安全漏洞

Red Hat OpenShift Container Platform is a suite of application platforms from Red Hat, Inc. that enable organizations to develop, deploy and manage existing container-based applications across physical, virtual and public cloud infrastructures. A security vulnerability exists in Red Hat OpenShift...

7.5CVSS6AI score0.00442EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.3 views

SUSE CVE-2006-0898

Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector IV of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael...

2.6CVSS6.9AI score0.01397EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:0 a.m.3 views

SUSE CVE-2020-10769

A buffer over-read flaw was found in RH kernel versions before 5.0 in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. When a payload longer than 4 bytes, and is not following 4-byte alignment boundary guidelines, it causes a buffer over-read...

5.5CVSS6.3AI score0.00491EPSS
Exploits1References20
BDU FSTEC
BDU FSTEC
added 2021/07/30 12:0 a.m.4 views

The vulnerability of the cryptographic module of microprogramming software for Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows a perpetrator to trigger a service failure.

The vulnerability of the cryptographic module of microprogramming software for Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to errors in encryption and decryption processes. Exploiting this vulnerability can allow a malicious actor to cause service...

7.8CVSS7.2AI score0.01188EPSS
Exploits0References3Affected Software2
RedHat Linux
RedHat Linux
added 2020/12/15 3:6 p.m.12 views

kernel: Buffer over-read in crypto_authenc_extractkeys() when a payload longer than 4 bytes is not aligned.

A buffer over-read flaw was found in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. When a payload longer than 4 bytes, and is not following 4-byte alignment boundary guidelines, it causes a buffer over-read threat, leading to a system crash...

5.5CVSS7.2AI score0.00491EPSS
Exploits1References4
Rows per page
Query Builder