Linux Distros Unpatched Vulnerability : CVE-2026-5392

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap out-of-bounds read in PKCS7 parsing. A crafted PKCS7 message can trigger an OOB read on the heap. The missing bounds check is in the indefinite-length...

Linux Distros Unpatched Vulnerability : CVE-2026-3336

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper certificate validation in PKCS7verify in AWS-LC allows an unauthenticated user to bypass certificate chain verification when processing PKCS7 objects...

CVE-2026-3338 PKCS7_verify Signature Validation Bypass in AWS-LC

Improper signature validation in PKCS7verify in AWS-LC allows an unauthenticated user to bypass signature verification when processing PKCS7 objects with Authenticated Attributes. Customers of AWS services do not need to take action. Applications using AWS-LC should upgrade to AWS-LC version 1.69...

SUSE CVE-2022-2509

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutlspkcs7verify function...

PT-2023-33053 · Openssl · Openssl

Name of the Vulnerable Software and Affected Versions: OpenSSL versions prior to 1.1.0 Description: A null pointer in OpenSSL can be dereferenced when signatures are being verified in malformed PKCS7 data, potentially causing unexpected crashes in agents or clients compiled with OpenSSL...

gnutls: Double free during gnutls_pkcs7_verify

A vulnerability was found in gnutls. This issue is due to a double-free error that occurs during the verification of pkcs7 signatures in the gnutlspkcs7verify function...

Security update for gnutls (important)

openSUSE Security Update: Security update for gnutls Announcement ID: openSUSE-SU-2022:2882-1 Rating: important References: 1202020 Cross-References: CVE-2022-2509 CVSS scores: CVE-2022-2509 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-2509 SUSE: 7.5...

OPENSUSE-SU-2022:2882-1 Security update for gnutls

This update for gnutls fixes the following issues: - CVE-2022-2509: Fixed a double free issue during PKCS7 verification bsc1202020...

SUSE-SU-2022:2882-1 Security update for gnutls

This update for gnutls fixes the following issues: - CVE-2022-2509: Fixed a double free issue during PKCS7 verification bsc1202020...

AZL-10439 CVE-2022-2509 affecting package gnutls for versions less than 3.7.7-1

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutlspkcs7verify function...

PT-2022-7559

Name of the Vulnerable Software and Affected Versions GnuTLS affected versions not specified Description A security flaw occurs due to a double free error during verification of pkcs7 signatures in the gnutls pkcs7 verify function. This issue allows a remote attacker to cause a denial of service...