213 matches found
EUVD-2025-0223
Malicious code in bioql PyPI...
Security update for rustup
This update for rustup fixes the following issues: CVE-2024-12224: Fixed improper validation of unsafe equivalence in punycode bsc1243862 CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242617 Patch Instructions: To install this SUSE update use the SUS...
SUSE-SU-2025:03298-1 Security update for rustup
This update for rustup fixes the following issues: - CVE-2024-12224: Fixed improper validation of unsafe equivalence in punycode bsc1243862 - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242617...
Linux Distros Unpatched Vulnerability : CVE-2018-20997
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the openssl crate before 0.10.9 for Rust. A use-after-free occurs in CMS Signing. CVE-2018-20997 Note that Nessus relies on the...
rust-openssl 安全漏洞
rust-openssl is a library from Rust for interacting with the OpenSSL library. A security vulnerability exists in rust-openssl versions prior to 0.10.55, which stems from an out-of-bounds read of X509VerifyParamRef::sethost...
Security update for python-cryptography
This update for python-cryptography fixes the following issues: CVE-2025-3416: openssl: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242631 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...
SUSE-SU-2025:20463-1 Security update for python-cryptography
This update for python-cryptography fixes the following issues: - CVE-2025-3416: openssl: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242631...
SUSE SLED15 / SLES15 Security Update : himmelblau (SUSE-SU-2025:02166-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02166-1 advisory. - CVE-2025-5791: Fixed using deprecated users crate bsc1244202 - CVE-2025-3416: Fixed use-After-Free in...
Security update for himmelblau
This update for himmelblau fixes the following issues: CVE-2025-5791: Fixed using deprecated users crate bsc1244202 CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242648 Update to version 0.7.17+git.0.1ebdab0 Update sccache-action version to use new...
SUSE SLED15 / SLES15 Security Update : s390-tools (SUSE-SU-2025:02017-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02017-1 advisory. Security issues fixed: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate...
Security update for s390-tools
This update for s390-tools fixes the following issues: Security issues fixed: CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: Added the new IBM z17 9175 processor type. Patch Instructions: To install this SUSE update use the SUSE...
SUSE-SU-2025:02017-1 Security update for s390-tools
This update for s390-tools fixes the following issues: Security issues fixed: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: - Added the new IBM z17 9175 processor type...
Fedora 42 : rust-openssl / rust-openssl-sys (2025-c263d3ebd9)
The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-c263d3ebd9 advisory. - Update the openssl crate to version 0.10.72. - Update the openssl-sys crate to version 0.9.107. This update addresses CVE-2025-3416 / RUSTSEC-2025-0022 a...
Fedora 43 : rust-openssl / rust-openssl-sys (2025-e385cbedb5)
The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-e385cbedb5 advisory. - Update the openssl crate to version 0.10.72. - Update the openssl-sys crate to version 0.9.107. This update addresses CVE-2025-3416 / RUSTSEC-2025-0022 a...
Security update for python-cryptography
This update for python-cryptography fixes the following issues: CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242631 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...
SUSE-SU-2025:20407-1 Security update for python-cryptography
This update for python-cryptography fixes the following issues: - CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242631...
SUSE-SU-2025:01807-1 Security update for 389-ds
This update for 389-ds fixes the following issues: Security fixes: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242666 Other fixes: - Enable memory accounting as SUSE disables it by default bsc1241016. - Fix dsidm service getdn option failing...
SUSE-SU-2025:01806-1 Security update for 389-ds
This update for 389-ds fixes the following issues: Security fixes: - CVE-2025-3416: Fixed use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate bsc1242666 Other fixes: - Enable memory accounting as SUSE disables it by default bsc1241016. - Fix dsidm service getdn option failing...
RHEL 9 : keylime-agent-rust (RHSA-2025:7313)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7313 advisory. Rust agent for Keylime Security Fixes: rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 For more details about the...
RHEL 9 : python3.12-cryptography (RHSA-2025:7317)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:7317 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...