24 matches found
RHEL 8 : ior (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - golang: crypto/elliptic: incorrect operations on the P-224 curve CVE-2021-3114 - Non-random values for...
RHEL 7 / 8 : OpenShift Virtualization 4.9.0 RPMs (RHSA-2021:4103)
The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4103 advisory. OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains...
GO-2021-0235 Incorrect operations on the P-224 curve in crypto/elliptic
The P224 Curve implementation can in rare circumstances generate incorrect outputs, including returning invalid points from ScalarMult...
RHEL 7 : OpenShift Container Storage 3.11.z (RHSA-2022:0308)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0308 advisory. The OpenShift Container Storage solution provides persistent storage service for OpenShift Containers and OpenShift Infrastructure services...
CentOS 8 : grafana (CESA-2021:4226)
The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:4226 advisory. - grafana: snapshot feature allow an unauthenticated remote attacker to trigger a DoS via a remote API call CVE-2021-27358 - golang: crypto/elliptic:...
golang: crypto/elliptic: incorrect operations on the P-224 curve
A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...
golang: crypto/elliptic: incorrect operations on the P-224 curve
A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...
golang: crypto/elliptic: incorrect operations on the P-224 curve
A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...
RHEL 8 : go-toolset:rhel8 (RHSA-2021:1746)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1746 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The following packages have been...
golang: crypto/elliptic: incorrect operations on the P-224 curve
A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...
golang: crypto/elliptic: incorrect operations on the P-224 curve
A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...
golang: crypto/elliptic: incorrect operations on the P-224 curve
A flaw detected in golang: crypto/elliptic, in which P-224 keys as generated can return incorrect inputs, reducing the strength of the cryptography. The highest threat from this vulnerability is confidentiality and integrity...
Debian: Security Advisory (DSA-4848-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : go1.15 (openSUSE-2021-192)
This update for go1.15 fixes the following issues : Go was updated to version 1.15.7 bsc1175132. Security issues fixed : - CVE-2021-3114: Fixed incorrect operations on the P-224 curve in crypto/elliptic bsc1181145. - CVE-2021-3115: Fixed a potential arbitrary code execution in the build process...
Security update for go1.14 (moderate)
openSUSE Security Update: Security update for go1.14 Announcement ID: openSUSE-SU-2021:0194-1 Rating: moderate References: 1164903 1181145 1181146 Cross-References: CVE-2021-3114 CVE-2021-3115 Affected Products: openSUSE Leap 15.2 An update that solves two vulnerabilities and has one errata is no...
OPENSUSE-SU-2021:0194-1 Security update for go1.14
This update for go1.14 fixes the following issues: Go was updated to version 1.14.14 bsc1164903. Security issues fixed: - CVE-2021-3114: Fixed incorrect operations on the P-224 curve in crypto/elliptic bsc1181145. - CVE-2021-3115: Fixed a potential arbitrary code execution in the build process...
OPENSUSE-SU-2021:0192-1 Security update for go1.15
This update for go1.15 fixes the following issues: Go was updated to version 1.15.7 bsc1175132. Security issues fixed: - CVE-2021-3114: Fixed incorrect operations on the P-224 curve in crypto/elliptic bsc1181145. - CVE-2021-3115: Fixed a potential arbitrary code execution in the build process...
OPENSUSE-SU-2021:0190-1 Security update for go1.14
This update for go1.14 fixes the following issues: Go was updated to version 1.14.14 bsc1164903. Security issues fixed: - CVE-2021-3114: Fixed incorrect operations on the P-224 curve in crypto/elliptic bsc1181145. - CVE-2021-3115: Fixed a potential arbitrary code execution in the build process...
Security update for go1.15 (moderate)
openSUSE Security Update: Security update for go1.15 Announcement ID: openSUSE-SU-2021:0192-1 Rating: moderate References: 1175132 1181145 1181146 Cross-References: CVE-2021-3114 CVE-2021-3115 Affected Products: openSUSE Leap 15.2 An update that solves two vulnerabilities and has one errata is no...
Security update for go1.14 (moderate)
openSUSE Security Update: Security update for go1.14 Announcement ID: openSUSE-SU-2021:0190-1 Rating: moderate References: 1164903 1181145 1181146 Cross-References: CVE-2021-3114 CVE-2021-3115 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errata is no...