261 matches found
BIT-NODE-MIN-2021-23840 Integer overflow in CipherUpdate
Calls to EVPCipherUpdate, EVPEncryptUpdate and EVPDecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 indicating succes...
OESA-2024-2387 openssl security update
OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to...
DLA-3942-1 openssl - security update
Bulletin has no description...
RHSA-2016:0302 Red Hat Security Advisory: openssl security update
Bulletin has no description...
RHSA-2016:2802 Red Hat Security Advisory: openssl security update
Bulletin has no description...
RHSA-2015:1072 Red Hat Security Advisory: openssl security update
Bulletin has no description...
RHSA-2014:0377 Red Hat Security Advisory: openssl security update
Bulletin has no description...
RHSA-2014:0376 Red Hat Security Advisory: openssl security update
Bulletin has no description...
RHSA-2012:0518 Red Hat Security Advisory: openssl security update
Bulletin has no description...
RHSA-2006:0661 Red Hat Security Advisory: openssl security update
Bulletin has no description...
[SECURITY] [DSA 5764-1] openssl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5764-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 03, 2024 https://www.debian.org/security/faq -...
DSA-5764-1 openssl - security update
Bulletin has no description...
Medium: openssl
Issue Overview: Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary: Applications that use the functions EVPPKEYparamcheck or EVPPKEYpubliccheck to check a DSA public key or DSA parameters may experience long delays. Where the key or parameters that ar...
ruby security update
3.0.7-162 - Upgrade to Ruby 3.0.7. Resolves: RHEL-35740 - Fix HTTP response splitting in CGI. Resolves: RHEL-35741 - Fix ReDoS vulnerability in URI. Resolves: RHEL-35742 - Fix ReDoS vulnerability in Time. Resolves: RHEL-35743 - Fix buffer overread vulnerability in StringIO. Resolves: RHEL-35744 -...
SUSE-SU-2024:0842-1 Security update for openssl
This update for openssl fixes the following issues: - CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file bsc1219243...
OESA-2024-1224 shim security update
Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...
SUSE-SU-2024:0549-1 Security update for openssl-1_1
This update for openssl-11 fixes the following issues: - CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file bsc1219243...
openssl security update
1:1.1.1k-12 - Backport implicit rejection mechanism for RSA PKCS1 v1.5 to RHEL-8 series a proper fix for CVE-2020-25659 Resolves: RHEL-17696 1:1.1.1k-11 - Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow Resolve...
SUSE-SU-2023:4524-1 Security update for openssl-1_1
This update for openssl-11 fixes the following issues: - CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service bsc1216922...
SUSE-SU-2023:4489-1 Security update for openssl
This update for openssl fixes the following issues: - CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service bsc1216922...