Lucene search
K

4 matches found

OSV
OSV
added 2024/03/01 11:7 a.m.5 views

OESA-2024-1227 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...

6.5CVSS8.7AI score0.73461EPSS
Exploits0References4
OSV
OSV
added 2024/03/01 11:7 a.m.3 views

OESA-2024-1224 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...

6.5CVSS8.6AI score0.73461EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/07 12:21 p.m.3 views

openssl: Possible DoS translating ASN.1 object identifiers

A flaw was found in OpenSSL resulting in a possible denial of service while translating ASN.1 object identifiers. Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience long delays when...

6.5CVSS6.8AI score0.73461EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/05/31 2:48 a.m.4 views

SUSE CVE-2023-2650

Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience...

6.5CVSS6.7AI score0.73461EPSS
Exploits0References125
Rows per page
Query Builder