Lucene search
K

197 matches found

CVE
CVE
added 2020/01/23 8:12 p.m.106 views

CVE-2015-5333

CVE-2015-5333 affects LibreSSL prior to 2.3.1. A memory leak in OBJ_obj2txt can be triggered by a large number of ASN.1 object identifiers in X.509 certificates, enabling a remote attacker to cause denial of service via memory consumption. Public sources in the connected documents consistently de...

7.5CVSS7.9AI score0.01978EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2020/01/23 7:56 p.m.23 views

CVE-2015-5334

Off-by-one error in the OBJobj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service program crash or possible execute arbitrary code via a crafted X.509 certificate, which triggers a stack-based buffer overflow. Note: this vulnerability exists because of an...

6.9AI score0.03489EPSS
Exploits1References5
CVE
CVE
added 2020/01/23 7:56 p.m.140 views

CVE-2015-5334

CVE-2015-5334 is described in CNVD as an off-by-one buffer overflow in LibreSSL’s OBJ_obj2txt() that can be triggered by a crafted X.509 certificate, potentially causing a denial of service or remote code execution. The flaw is attributed to an incorrect fix for CVE-2014-3508. The initial CVE ent...

9.8CVSS7AI score0.03489EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/01/15 12:0 a.m.43 views

openSUSE Security Update : proftpd (openSUSE-2020-31)

This update for proftpd fixes the following issues : - GeoIP has been discontinued by Maxmind boo1156210 This update removes module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuati on-notice/ - CVE-2019-19269: Fixed a NULL pointer dereference may occur when validating...

9.8CVSS6.6AI score0.57606EPSS
Exploits2References13
ossfuzz
ossfuzz
added 2019/05/02 11:26 p.m.13 views

libressl/asn1: Crash in asn1_item_print_ctx

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5653710820081664 Project: libressl Fuzzer: afllibresslasn1 Fuzz target binary: asn1 Job Type: aflasanlibressl Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x60a0018b0000 Cra...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/04/19 11:42 p.m.28 views

cryptofuzz/cryptofuzz-libressl: Crash in aesni_ctr32_encrypt_blocks

Project: https://github.com/guidovranken/cryptofuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5738110048010240 Project: cryptofuzz Fuzzer: libFuzzercryptofuzzcryptofuzz-libressl Fuzz target binary: cryptofuzz-libressl Job Type: libfuzzerasancryptofuzz Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/04/19 6:19 a.m.19 views

cryptofuzz/cryptofuzz-libressl: Crash in aesni_encrypt

Project: https://github.com/guidovranken/cryptofuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5751567346565120 Project: cryptofuzz Fuzzer: libFuzzercryptofuzzcryptofuzz-libressl Fuzz target binary: cryptofuzz-libressl Job Type: libfuzzerasancryptofuzz Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/04/18 9:34 a.m.22 views

cryptofuzz/cryptofuzz-libressl: Bad-free in aes_gcm_cleanup

Project: https://github.com/guidovranken/cryptofuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5749345716011008 Project: cryptofuzz Fuzzer: aflcryptofuzzcryptofuzz-libressl Fuzz target binary: cryptofuzz-libressl Job Type: aflasancryptofuzz Platform Id: linux Crash Type: Bad-free Cras...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/04/12 9:54 p.m.15 views

libressl/asn1: Heap-buffer-overflow in asn1_item_ex_d2i

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5666378322804736 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

6.8AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/10 12:0 a.m.24 views

macOS < 10.14 Multiple Vulnerabilities

Binary data 700518.prm...

10CVSS7.6AI score0.60631EPSS
Exploits20References57
ossfuzz
ossfuzz
added 2019/04/09 2:52 a.m.24 views

libressl/asn1: Heap-buffer-overflow in c2i_ASN1_INTEGER

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5723457666416640 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/03/27 7:41 a.m.14 views

libressl/asn1: Crash in asn1_item_print_ctx

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5665138134220800 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerubsanlibressl Platform Id: linux Crash Type: UNKNOWN READ Crash Address:...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/03/27 4:52 a.m.14 views

libressl/asn1: Heap-buffer-overflow in do_print_ex

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5685609458302976 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

6.4AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.29 views

openSUSE Security Update : libressl (openSUSE-2019-644)

This update for libressl to version 2.8.0 fixes the following issues : Security issues fixed : - CVE-2018-12434: Avoid a timing side-channel leak when generating DSA and ECDSA signatures. boo1097779 - Reject excessively large primes in DH key generation. Other bugs fixed : - Fixed a pair of 20+...

4.7CVSS5.5AI score0.00321EPSS
Exploits0References2
ossfuzz
ossfuzz
added 2019/03/19 5:40 a.m.18 views

libressl/asn1: Heap-buffer-overflow in ASN1_get_object

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5740695165337600 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/03/19 5:36 a.m.15 views

libressl/client: Global-buffer-overflow in ssl_sigalg

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5667522344386560 Project: libressl Fuzzer: libFuzzerlibresslclient Fuzz target binary: client Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Global-buffer-overflow READ 2...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/03/19 5:35 a.m.17 views

libressl/asn1: Crash in BN_bin2bn

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5661545494740992 Project: libressl Fuzzer: libFuzzerlibresslasn1 Fuzz target binary: asn1 Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: UNKNOWN READ Crash Address:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/03/19 2:55 a.m.16 views

libressl/server: Global-buffer-overflow in ssl_sigalg

Project: https://github.com/libressl-portable/portable.git Detailed report: https://oss-fuzz.com/testcase?key=5658594446409728 Project: libressl Fuzzer: libFuzzerlibresslserver Fuzz target binary: server Job Type: libfuzzerasanlibressl Platform Id: linux Crash Type: Global-buffer-overflow READ 2...

6.8AI score
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2019/02/19 12:0 a.m.36 views

openSUSE: Security Advisory for nginx (openSUSE-SU-2019:0195-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2CVSS7.4AI score0.47057EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/02/19 12:0 a.m.75 views

openSUSE Security Update : nginx (openSUSE-2019-195)

This update for nginx fixes the following issues : nginx was updated to 1.14.2 : - Bugfix: nginx could not be built on Fedora 28 Linux. - Bugfix: in handling of client addresses when using unix domain listen sockets to work with datagrams on Linux. - Change: the logging level of the 'http request...

8.2CVSS6.7AI score0.47057EPSS
Exploits1References6
Rows per page
Query Builder