Lucene search
K

85 matches found

OSV
OSV
added 2026/06/25 10:17 p.m.3 views

DEBIAN-CVE-2026-6325

Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a write past the bounds of the destination buffer...

7.5CVSS5.8AI score0.00175EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 10:17 p.m.6 views

CVE-2026-6325

Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a write past the bounds of the destination buffer...

7.5CVSS0.00175EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/25 9:4 p.m.23 views

CVE-2026-6325 Out-of-bounds write in SetSuitesHashSigAlgo on oversized signature algorithms list

Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a write past the bounds of the destination buffer...

2CVSS0.00175EPSS
Exploits0References2
CVE
CVE
added 2026/06/25 9:4 p.m.22 views

CVE-2026-6325

Technical details are not publicly available in the provided documents. Monitor for updates.

7.5CVSS5.8AI score0.00175EPSS
Exploits0References2Affected Software1
Hacker One
Hacker One
added 2026/05/16 2:59 a.m.26 views

curl: SSL session-cache peer key omits signature_algorithms: strict-sigalg handle silently resumes a permissive sibling's session

CURLOPTSSLSIGNATUREALGORITHMS policy bypass: SSL session cache key omits sigalgs, allowing a strict-sigalg handle to resume a session negotiated under a permissive policy AI disclosure This report was prepared with the assistance of an AI coding assistant Claude. The behavioral diff pre/post patc...

7.5CVSS6.7AI score0.03721EPSS
Exploits1
OSV
OSV
added 2026/04/27 6:33 p.m.11 views

JLSEC-2026-223 openssl-src NULL pointer Dereference in signature_algorithms processing

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension where it was present in the initial ClientHello, but includes a signaturealgorithmscert extension then a NU...

5.9CVSS6.8AI score0.62906EPSS
Exploits3References35
OSV
OSV
added 2026/04/27 6:33 p.m.12 views

JLSEC-2026-219 Null pointer deference in openssl-src

Server or client applications that call the SSLcheckchain function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signaturealgorithmscert" TLS extension. The crash occurs if an invalid or unrecognised signature algorithm i...

7.5CVSS6.2AI score0.53336EPSS
Exploits2References42
Snyk
Snyk
added 2026/04/01 12:0 a.m.5 views

Improperly Implemented Security Check for Standard

Overview Affected versions of this package are vulnerable to Improperly Implemented Security Check for Standard in the mbedtlssslconfsigalgs function. An attacker can reduce the security strength of cryptographic operations by forcing the use of weaker algorithms, which may result in information...

6.9CVSS5.8AI score0.00135EPSS
Exploits0References2
Redos
Redos
added 2026/03/10 12:0 a.m.9 views

ROS-20260310-73-0040

A vulnerability in the signature verification functions GOST DSA, EDDSA and ECDSA of the Nettle library is related to flaws in the cryptographic algorithms used. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by entering an invalid signature...

8.1CVSS7AI score0.01607EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.11 views

Post-quantum X509 Signature Algorithms

This plugin detects which post-quantum TLS signature algorithms are supported by the remote service. TRUSTED...

5.5AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-3923

Malware in sbrugna...

7.5CVSS7.4AI score0.02118EPSS
Exploits0References6
OSV
OSV
added 2025/09/18 11:8 a.m.4 views

SUSE-SU-2025:03268-1 Security update for curl

This update for curl fixes the following issues: Security issues fixed: - CVE-2025-9086: bug in patch comparison logic when processing cookies can lead to out-of-bounds read in heap buffer bsc1249191. - CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious serv...

7.5CVSS7.1AI score0.01301EPSS
Exploits1References7
SUSE Linux
SUSE Linux
added 2025/09/18 11:6 a.m.4 views

Security update for curl

This update for curl fixes the following issues: Security issues fixed: CVE-2025-9086: bug in patch comparison logic when processing cookies can lead to out-of-bounds read in heap buffer bsc1249191. CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server...

7.5CVSS6.8AI score0.01301EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 2025/09/12 12:15 p.m.5 views

Security update for curl

This update for curl fixes the following issues: Update to version 8.14.1 jscPED-13055, jscPED-13056. Security issues fixed: CVE-2025-0665: eventfd double close can cause libcurl to act unreliably bsc1236589. CVE-2025-4947: QUIC certificate check is skipped with wolfSSL allows for MITM attacks...

8.3CVSS7.6AI score0.01301EPSS
Exploits7References36
OSV
OSV
added 2025/06/02 5:15 p.m.5 views

UBUNTU-CVE-2025-48994

SignXML is an implementation of the W3C XML Signature standard in Python. When verifying signatures with X509 certificate validation turned off and HMAC shared secret set signxml.XMLVerifier.verifyrequirex509=False, hmackey=..., versions of SignXML prior to 4.0.4 are vulnerable to a potential...

6.9CVSS5.8AI score0.00192EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/04/25 12:0 a.m.24 views

LightDSA: a Python-Based Hybrid Digital Signature Library and Performance Analysis of RSA, DSA, ECDSA and EdDSA in Variable Configurations, Elliptic Curve Forms and Curves

Digital signature algorithms DSAs are fundamental to cryptographic security, ensuring data integrity and authentication. While RSA, DSA, ECDSA, and EdDSA are widely used, their performance varies significantly depending on key sizes, hash functions, and elliptic curve configurations. In this pape...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/11/09 12:0 a.m.4 views

PT-2023-9800 · Asyncssh +3 · Asyncssh +3

Name of the Vulnerable Software and Affected Versions: AsyncSSH versions prior to 2.14.1 Description: The issue in AsyncSSH allows attackers to control the extension info message via a man-in-the-middle attack, enabling them to conduct algorithm downgrade attacks during user authentication. This...

6.8CVSS6.5AI score0.93305EPSS
Exploits4References50
RedHat Linux
RedHat Linux
added 2023/06/07 2:8 a.m.4 views

golang: crash in a golang.org/x/crypto/ssh server

A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentication with RSA keys to servers that reject signature algorithms based on SHA-2, enabling an attacker to crash the server, resulting in a loss of availability...

7.5CVSS6.8AI score0.03931EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.39 views

K83623027: OpenSSL vulnerability CVE-2021-3449

Security Advisory Description An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension where it was present in the initial ClientHello, but includes a...

5.9CVSS7AI score0.62906EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.8 views

SUSE CVE-2009-0049

Belgian eID middleware eidlib 2.6.0 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS7.6AI score0.01185EPSS
Exploits0References4
Rows per page
Query Builder