Lucene search
K

86 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.3 views

SUSE CVE-2020-1968

The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman DH based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted...

5.3CVSS6.7AI score0.04803EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/01/06 12:0 a.m.33 views

EulerOS Virtualization 3.0.2.6 : openssl (EulerOS-SA-2023-1052)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime...

7.5CVSS6.9AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/12/21 12:0 a.m.19 views

EulerOS 2.0 SP10 : shim (EulerOS-SA-2022-2831)

According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally th...

7.5CVSS6.9AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/10/09 12:0 a.m.33 views

EulerOS Virtualization 3.0.6.6 : openssl098e (EulerOS-SA-2022-2526)

According to the versions of the openssl098e package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime...

7.5CVSS6.8AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/07/07 12:0 a.m.66 views

Oracle Linux 9 : compat-openssl11 (ELSA-2022-4899)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-4899 advisory. - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates Resolves: rhbz2063147 Tenable has extracted the preceding...

7.5CVSS7AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/07/01 12:0 a.m.73 views

Oracle Linux 8 : compat-openssl10 (ELSA-2022-5326)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-5326 advisory. 1:1.0.2o-4 - Fix CVE-2022-0778: Infinite loop in BNmodsqrt reachable when parsing certificates Resolves: rhbz2077417 Tenable has extracted the preceding...

7.5CVSS7AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/05/26 12:0 a.m.41 views

EulerOS 2.0 SP3 : openssl098e (EulerOS-SA-2022-1754)

According to the versions of the openssl098e package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli...

7.5CVSS6.8AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/04/25 12:0 a.m.31 views

EulerOS 2.0 SP5 : openssl098e (EulerOS-SA-2022-1546)

According to the versions of the openssl098e package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli...

7.5CVSS6.8AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.47 views

EulerOS 2.0 SP9 : openssl (EulerOS-SA-2022-1455)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3...

5.9CVSS6.8AI score0.83645EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/04/08 12:0 a.m.67 views

Oracle Linux 6 : openssl (ELSA-2022-9272)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9272 advisory. - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800 - Backport fixes for CVE-2020-1971 Orabug: 32654738 - Oracle bug 28730228: backport...

10CVSS8AI score0.99999EPSS
Exploits130References2
Tenable Nessus
Tenable Nessus
added 2022/03/29 12:0 a.m.48 views

Oracle Linux 7 : openssl (ELSA-2022-1066)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-1066 advisory. - Fixes CVE-2022-2078 Infinite loop in BNmodsqrt reachable when parsing certificates Tenable has extracted the preceding description block directly from the...

7.5CVSS7.2AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/03/23 12:0 a.m.41 views

SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2022:0935-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0935-1 advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli...

7.5CVSS6.8AI score0.70561EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/03/17 12:0 a.m.52 views

SUSE SLES12: libopenssl-1_0_0-devel / libopenssl-1_0_0-devel-32bit / etc (SUSE-SU-2022:0857-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0857-1 advisory. - CVE-2022-0778: Infinite loop in BNmodsqrt reachable when parsing certificates bsc1196877. - Allow CRYPTOTHREADIDsetcallback to be called...

7.5CVSS7AI score0.70561EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2022/03/17 12:0 a.m.27 views

SUSE SLES11: libopenssl-devel / libopenssl0_9_8 / libopenssl0_9_8-32bit / etc (SUSE-SU-2022:14915-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:14915-1 advisory. - CVE-2022-0778: Infinite loop in BNmodsqrt reachable when parsing certificates bsc1196877. Tenable has extracted the preceding description block...

7.5CVSS7AI score0.70561EPSS
Exploits2References4
Github Security Blog
Github Security Blog
added 2022/03/16 12:0 a.m.57 views

openssl-src's infinite loop in `BN_mod_sqrt()` reachable when parsing certificates

The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a...

7.5CVSS7.7AI score0.70561EPSS
Exploits2References38Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/03/16 12:0 a.m.46 views

SUSE SLES15: libopenssl-1_1-devel / libopenssl-1_1-devel-32bit / libopenssl1_1 / etc (SUSE-SU-2022:0853-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0853-1 advisory. - CVE-2022-0778: Infinite loop in BNmodsqrt reachable when parsing certificates bsc1196877. Tenable has extracted the preceding description...

7.5CVSS7AI score0.70561EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/03/16 12:0 a.m.42 views

SUSE SLES15 Security Update : openssl-1_0_0 (SUSE-SU-2022:0856-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0856-1 advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli...

7.5CVSS6.8AI score0.70561EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/03/15 12:0 a.m.52 views

Ubuntu 18.04 LTS / 20.04 LTS : OpenSSL vulnerability (USN-5328-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5328-1 advisory. Tavis Ormandy discovered that OpenSSL incorrectly parsed certain certificates. A remote attacker could possibly use this issue to cause OpenSSH to sto...

7.5CVSS6.9AI score0.70561EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.52 views

SUSE SLES11 Security Update : openssl1 (SUSE-SU-2020:14511-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2020:14511-1 advisory. - The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections...

4.3CVSS6.3AI score0.04803EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.348 views

SUSE SLES11 Security Update : openssl1 (SUSE-SU-2020:14560-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2020:14560-1 advisory. - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL...

5.9CVSS7.1AI score0.06968EPSS
Exploits3References4
Rows per page
Query Builder