Lucene search
K

4 matches found

Redos
Redos
added 2026/03/10 12:0 a.m.9 views

ROS-20260310-73-0040

A vulnerability in the signature verification functions GOST DSA, EDDSA and ECDSA of the Nettle library is related to flaws in the cryptographic algorithms used. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by entering an invalid signature...

8.1CVSS7AI score0.01607EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.8 views

SUSE CVE-2009-0049

Belgian eID middleware eidlib 2.6.0 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS7.6AI score0.01185EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.5 views

SUSE CVE-2018-12433

DISPUTED cryptlib through 3.4.4 allows a memory-cache side-channel attack on DSA and ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a key, the attacker needs access to either the local machine or a different virtual machine on the same physical host. NOTE: the...

4.9CVSS6.3AI score0.00346EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2021/06/09 9:33 a.m.2 views

nettle: Out of bounds memory access in signature verification

A flaw was found in Nettle, where several Nettle signature verification functions GOST DSA, EDDSA & ECDSA result in the Elliptic Curve Cryptography point ECC multiply function being called with out-of-range scalers, possibly resulting in incorrect results. This flaw allows an attacker to force an...

8.1CVSS6.8AI score0.01607EPSS
Exploits0References5
Rows per page
Query Builder