Lucene search
K

23343 matches found

RedHat Linux
RedHat Linux
added 2025/05/19 6:21 a.m.5 views

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

7.4CVSS6.9AI score0.59501EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1493)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS5.4AI score0.05966EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1465)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.2AI score0.05966EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1205)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.2AI score0.05966EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1550)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.2AI score0.05966EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-1216)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.2AI score0.05966EPSS
Exploits0References2
OSV
OSV
added 2025/05/19 12:0 a.m.9 views

ALSA-2025:7937 Important: compat-openssl11 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. Security Fixes: openssl: X.400 address type confusion in X.509 GeneralName...

7.4CVSS7.6AI score0.59501EPSS
Exploits0References4
OSV
OSV
added 2025/05/19 12:0 a.m.15 views

ALSA-2025:7895 Important: compat-openssl10 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. Security Fixes: openssl: X.400...

7.4CVSS7.6AI score0.59501EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/05/19 12:0 a.m.18 views

Important: compat-openssl11 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. Security Fixes: openssl: X.400 address type confusion in X.509 GeneralName...

7.4CVSS7.6AI score0.59501EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/05/19 12:0 a.m.19 views

Important: compat-openssl10 security update

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries and is provided for compatibility with previous releases and software that does not support compilation with OpenSSL-1.1. Security Fixes: openssl: X.400...

7.4CVSS7.2AI score0.59501EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/17 12:0 a.m.7 views

EulerOS Virtualization 2.12.1 : openssl (EulerOS-SA-2025-1550)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to...

4.3CVSS6.9AI score0.05966EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/17 12:0 a.m.3 views

EulerOS Virtualization 2.12.0 : openssl (EulerOS-SA-2025-1565)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to...

4.3CVSS6.9AI score0.05966EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/16 6:20 p.m.8 views

Security Bulletin: Vulnerability in OpenSSL (CVE-2024-13176) affects PowerVM

Summary OpenSSL is used by PowerVM to support virtual TPM operations. This bulletin provides a remediation for the impacted vulnerability, CVE-2024-13176 by upgrading PowerVM and thus addressing the exposure to the openssl vulnerability. Vulnerability Details CVEID:CVE-2024-13176 DESCRIPTION: Iss...

4.1CVSS5.8AI score0.00601EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/05/16 1:44 p.m.1 views

Security update for cargo-c

This update for cargo-c fixes the following issues: CVE-2025-3416: use-after-free in Md::fetch and Cipher::fetch of rust-openssl crate bsc1242675. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.3CVSS4.7AI score0.00452EPSS
Exploits0References4
OSV
OSV
added 2025/05/16 1:44 p.m.2 views

SUSE-SU-2025:1570-1 Security update for cargo-c

This update for cargo-c fixes the following issues: - CVE-2025-3416: use-after-free in Md::fetch and Cipher::fetch of rust-openssl crate bsc1242675...

3.7CVSS5.7AI score0.00452EPSS
Exploits0References3
OSV
OSV
added 2025/05/16 12:16 a.m.5 views

SUSE-SU-2025:1550-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: Security: - CVE-2025-27587: Timing side channel vulnerability in the P-384 implementation when used with ECDSA in the PPC architecture bsc1240366. - Missing null pointer check before accessing handshakefunc in ssllib.c bsc1240607. FIPS: -...

5.3CVSS6.6AI score0.00361EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.3 views

SUSE SLES15: libopenssl-1_1-devel / libopenssl-1_1-devel-32bit / libopenssl1_1 / etc (SUSE-SU-2025:0613-3)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0613-3 advisory. - CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation bsc1236136. Other bugfixes: - Non approved PBKDF parameters wrongly...

4.1CVSS6.7AI score0.00601EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.18 views

RHEL 9 : compat-openssl11 (RHSA-2025:7733)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7733 advisory. The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the...

7.4CVSS7.8AI score0.59501EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.14 views

SUSE SLES15 Security Update : go1.22-openssl (SUSE-SU-2025:1555-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1555-1 advisory. Update to version 1.22.12 bsc1218424: Security fixes: - CVE-2024-45336: net/http: sensitive headers incorrectly sent after...

6.1CVSS6.7AI score0.00647EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2025/05/16 12:0 a.m.15 views

openSUSE Security Advisory (SUSE-SU-2025:1550-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.5AI score0.00361EPSS
Exploits0References8
Rows per page
Query Builder