Lucene search
K

50 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 1:58 p.m.38 views

Security Bulletin: Multiple Vulnerabilities in Go affects IBM Watson Studio Local

Summary Security Bulletin: Multiple Vulnerabilities in Go affects IBM Watson Studio Local Vulnerability Details CVEID: CVE-2019-11841 DESCRIPTION: A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to th...

9.8CVSS1AI score0.66252EPSS
Exploits4Affected Software1
UbuntuCve
UbuntuCve
added 2019/05/22 5:29 p.m.43 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS7AI score0.02002EPSS
Exploits2References3
OSV
OSV
added 2019/05/22 5:29 p.m.5 views

UBUNTU-CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS7AI score0.02002EPSS
Exploits2References4
NVD
NVD
added 2019/05/22 5:29 p.m.26 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS6.6AI score0.02002EPSS
Exploits2References7
OSV
OSV
added 2019/05/22 5:29 p.m.9 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS5.9AI score0.02002EPSS
Exploits2References7
Debian CVE
Debian CVE
added 2019/05/22 12:0 a.m.35 views

CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS6.5AI score0.02002EPSS
Exploits2
Packet Storm
Packet Storm
added 2019/05/13 12:0 a.m.123 views

Go Cryptography Libraries Cleartext Message Spoofing

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Cleartext message spoofing product: Supplementary Go Cryptography Libraries vulnerable version: commit a5d413f7728c81fb97d96a2b722368945f651e78 branch master...

0.6AI score0.02002EPSS
Exploits2
Prion
Prion
added 2019/05/09 4:29 p.m.24 views

Information disclosure

An issue was discovered in supplementary Go cryptography libraries, aka golang-googlecode-go-crypto, before 2019-03-20. A flaw was found in the amd64 implementation of golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa. If more than 256 GiB of keystream is generated, or if the...

4.3CVSS5.6AI score0.03465EPSS
Exploits0References10Affected Software2
OSV
OSV
added 2019/05/09 4:29 p.m.8 views

CVE-2019-11840

An issue was discovered in the supplementary Go cryptography library, golang.org/x/crypto, before v0.0.0-20190320223903-b7391e95e576. A flaw was found in the amd64 implementation of the golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa packages. If more than 256 GiB of keystream i...

5.9CVSS5.7AI score
Exploits0References11
Cvelist
Cvelist
added 2019/05/09 12:0 a.m.84 views

CVE-2019-11840

An issue was discovered in the supplementary Go cryptography library, golang.org/x/crypto, before v0.0.0-20190320223903-b7391e95e576. A flaw was found in the amd64 implementation of the golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa packages. If more than 256 GiB of keystream i...

5.8AI score0.03465EPSS
Exploits0References11
Rows per page
Query Builder